Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\Windows System Service] 'Start' = '00000002'
- C:\V3LSvc.exe
- C:\V3LTray.exe
- %WINDIR%\system\svchost.exe
- C:\V3LSvc.exe (загружен из сети Интернет)
- C:\V3LTray.exe (загружен из сети Интернет)
- <SYSTEM32>\taskkill.exe /f /im V3LTray.exe
- <SYSTEM32>\taskkill.exe /f /im V3LSvc.exe
- <SYSTEM32>\taskkill.exe /f /im NaverAgent.exe
- <SYSTEM32>\taskkill.exe /f /im AYAgent.aye
- <SYSTEM32>\taskkill.exe /f /im ALYac.aye
- <SYSTEM32>\taskkill.exe /f /im AYServiceNT.aye
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\2[1].exe
- C:\V3LSvc.exe
- C:\V3LTray.exe
- %WINDIR%\system\svchost.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\1[1].exe
- 'localhost':1037
- 'rl####.host.kridc.org':80
- rl####.host.kridc.org/2.exe
- rl####.host.kridc.org/1.exe
- rl####.host.kridc.org/Count.asp?ve######################################
- DNS ASK rl####.host.kridc.org
- '<IP-адрес в локальной сети>':1035
- ClassName: '' WindowName: ''