Техническая информация
- '%TEMP%\svchost.exe'
- '%PROGRAM_FILES%\Internet Explorer\IEXPLORE.EXE' http://www.jj#.com
- '%WINDIR%\regedit.exe' /S %TEMP%\1.reg
- '<SYSTEM32>\cmd.exe' /c c:\ccdf.bat
- '%PROGRAM_FILES%\Internet Explorer\IEXPLORE.EXE' http://www.55##.com
- %TEMP%\1.reg
- C:\ccdf.bat
- %TEMP%\svchost.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\2VAZY7AN\5502[1]
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\5502[1]
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\jjj[1]
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\2VAZY7AN\jjj[1]
- %TEMP%\1.reg
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\jjj[1]
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\5502[1]
- 'localhost':1063
- 'localhost':1064
- 'localhost':1060
- 'localhost':1056
- 'localhost':1059
- 'localhost':1067
- 'localhost':1075
- 'localhost':1076
- 'localhost':1072
- 'localhost':1068
- 'localhost':1071
- 'www.55##.com':80
- 'localhost':1043
- 'www.jj#.com':80
- 'localhost':1037
- 'localhost':1038
- 'localhost':1044
- 'localhost':1052
- 'localhost':1055
- 'localhost':1051
- 'localhost':1047
- 'localhost':1048
- www.55##.com/
- www.jj#.com/
- DNS ASK www.55##.com
- DNS ASK www.jj#.com
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'RegEdit_RegEdit' WindowName: ''
- ClassName: '' WindowName: ''