Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'SurfPlus' = '%WINDIR%\SurfPlus.exe'
- %WINDIR%\SurfPlus.exe /I
- <SYSTEM32>\regsvr32.exe /s SPActive.dll
- <SYSTEM32>\regsvr32.exe /s SurfPlus.dll
- %WINDIR%\SPIESetup.exe
- %WINDIR%\SPActive.dll
- %WINDIR%\gzlib.dll
- %WINDIR%\Spieinf.dat
- %WINDIR%\SurfPlus.exe
- %WINDIR%\SurfPlus.dll
- %TEMP%\Spedia\SPIESetup.exe
- %TEMP%\Spedia\SPActive.dll
- %TEMP%\Spedia\gzlib.dll
- %TEMP%\Spedia\Setup.dat
- %TEMP%\Spedia\SurfPlus.exe
- %TEMP%\Spedia\SurfPlus.dll
- %TEMP%\Spedia\SurfPlus.dll
- %TEMP%\Spedia\SurfPlus.exe
- %TEMP%\Spedia\SPIESetup.exe
- %TEMP%\Spedia\gzlib.dll
- %TEMP%\Spedia\SPActive.dll
- 'www.sp##ia.net':80
- www.sp##ia.net/cgi-bin/tz.cgi?ru###############
- www.sp##ia.net/cgi-bin/tz.cgi?ru##########################
- DNS ASK www.sp##ia.net
- ClassName: 'SPIEHiddenFrameClass' WindowName: 'SPIEHiddenFrame'
- ClassName: 'Shell_TrayWnd' WindowName: ''