Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'WinNetWan' = 'rundll32.exe "<LS_APPDATA>\HpMobileUI\WinNetWan.dll",SystemCommonclass AsynccrtServ'
- <SYSTEM32>\rundll32.exe "<LS_APPDATA>\HpMobileUI\WinNetWan.dll",SystemCommonclass AsynccrtServ
- <SYSTEM32>\rundll32.exe ""%TEMP%\eapEventSupport.dll"", SystemCommonclass ApplePathNetM
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\showpads[1].php
- %TEMP%\eapEventSupport.dll
- <LS_APPDATA>\HpMobileUI\WinNetWan.dll
- %TEMP%\exeicon.com-icon-extractor-4.1122.exe
- %TEMP%\nsv2.tmp\NSISdl.dll
- %TEMP%\exeicon.com-icon-extractor-4.1122.log
- %TEMP%\nsv2.tmp\NSISdl.dll
- %TEMP%\eapEventSupport.dll
- 'fr####fesoft.com':80
- 'localhost':1038
- 'so##data.us':80
- fr####fesoft.com/showpads.php?ca############################################################################
- so##data.us/version.php?ve###########################################
- DNS ASK fr####fesoft.com
- DNS ASK so##data.us
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'Quickapimon2' WindowName: ''
- ClassName: 'Indicator' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: '' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'IEFrame' WindowName: ''