Техническая информация
- '%HOMEPATH%\5b45q9m56\dqkqFq.com' KVYFp.XWR
- '%WINDIR%\Microsoft.NET\Framework\v2.0.50727\RegSvcs.exe'
- %WINDIR%\Microsoft.NET\Framework\v2.0.50727\RegSvcs.exe
- [<HKCU>\Software\Yahoo\Pager]
- [<HKCU>\Software\Microsoft\IdentityCRL]
- [<HKCU>\Software\Microsoft\MessengerService]
- [<HKCU>\Software\Google\Google Talk\Accounts]
- [<HKCU>\Software\Microsoft\MSNMessenger]
- %HOMEPATH%\5b45q9m56\run.vbs
- %TEMP%\hHj9FuGZ8w.ini
- %TEMP%\KIZ8Q3TFy1.ini
- %HOMEPATH%\5b45q9m56\awuNlDZF.LUC
- %HOMEPATH%\5b45q9m56\ZgJdyHsbb.YMC
- %HOMEPATH%\5b45q9m56\dqkqFq.com
- %HOMEPATH%\5b45q9m56\KVYFp.XWR
- %HOMEPATH%\5b45q9m56\KVYFp.XWR
- %HOMEPATH%\5b45q9m56\awuNlDZF.LUC
- %HOMEPATH%\5b45q9m56\ZgJdyHsbb.YMC
- %HOMEPATH%\5b45q9m56\dqkqFq.com
- %TEMP%\hHj9FuGZ8w.ini
- 'ho####y.comze.com':80
- ho####y.comze.com/php/index.php?ac###########################################################
- DNS ASK ho####y.comze.com
- ClassName: '(null)' WindowName: 'Yahoo! Messenger'
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: 'EDIT' WindowName: '(null)'