Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\System Service] 'Start' = '00000002'
- C:\b.exe (загружен из сети Интернет)
- C:\a.exe (загружен из сети Интернет)
- %PROGRAM_FILES%\ctfmon.exe
- <SYSTEM32>\taskkill.exe /f /im V3LSvc.exe
- <SYSTEM32>\taskkill.exe /f /im NaverAgent.exe
- <SYSTEM32>\taskkill.exe /f /im NVCAgent.npc
- <SYSTEM32>\taskkill.exe /f /im V3LTray.exe
- <SYSTEM32>\taskkill.exe /f /im AYAgent.aye
- <SYSTEM32>\taskkill.exe /f /im ALYac.aye
- <SYSTEM32>\taskkill.exe /f /im AYServiceNT.aye
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\0D6B6PI5\cc32b[1].exe
- C:\b.exe
- C:\a.exe
- %PROGRAM_FILES%\ctfmon.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\cc32[1].exe
- C:\a.exe
- 'localhost':1037
- 'www.ma##vl.com':80
- www.ma##vl.com/cc32/cc32b.exe
- www.ma##vl.com/cc32/cc32.exe
- www.ma##vl.com/cc32/tj/Count.asp?ve######################################
- DNS ASK www.ma##vl.com
- ClassName: '' WindowName: ''