Техническая информация
- <SYSTEM32>\downx.exe /p=4918241
- <SYSTEM32>\downx.exe
- <SYSTEM32>\VB6STKIT.DLL
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\2009_08_01_archive[1].html
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\check[1].php
- %TEMP%\$inst\temp_0.tmp
- %TEMP%\$inst\2.tmp
- <SYSTEM32>\INETKO.DLL
- <SYSTEM32>\VB6KO.DLL
- <SYSTEM32>\MSINET.OCX
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\check[1].php
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\2009_08_01_archive[1].html
- %TEMP%\$inst\temp_0.tmp
- %TEMP%\$inst\2.tmp
- 'jo##.wo.tc':80
- 'zo#####1.blogspot.com':80
- 'localhost':1035
- 'ma###o.wo.tc':80
- zo#####1.blogspot.com/2009_08_01_archive.html
- jo##.wo.tc/check.php
- ma###o.wo.tc/check.php
- DNS ASK zo#####1.blogspot.com
- DNS ASK jo##.wo.tc
- DNS ASK ma###o.wo.tc
- ClassName: 'Shell_TrayWnd' WindowName: ''