Техническая информация
- %PROGRAM_FILES%\Internet Explorer\IEXPLORE.EXE http://to####991.3322.org/tj.htm
- <SYSTEM32>\wscript.exe ""%TEMP%\tongji.vbs""
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\tj[1].htm
- %TEMP%\s.wav
- %TEMP%\qqbao.exe
- %TEMP%\tongji.vbs
- 'localhost':1038
- 'to####991.3322.org':80
- 'localhost':1035
- to####991.3322.org/tj.htm
- to####991.3322.org/tongji.htm
- DNS ASK to####991.3322.org
- ClassName: '' WindowName: ''
- ClassName: 'ToolbarWindow32' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'EDIT' WindowName: ''
- ClassName: 'SysPager' WindowName: ''
- ClassName: 'TrayNotifyWnd' WindowName: ''