Техническая информация
- [<HKLM>\SOFTWARE\Classes\dllfile\shell\open\command] '' = 'rundll32.exe'
- %WINDIR%\WINDOWS\p1xject.exe
- ClassName: 'OLLYDBG' WindowName: ''
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\logger[1].php
- %WINDIR%\WINDOWS\p1x.sys
- %WINDIR%\WINDOWS\p1xject.exe
- %WINDIR%\WINDOWS\p1x.sys
- %WINDIR%\WINDOWS\p1xject.exe
- 'www.ex####ion.d9x.ru':80
- 'localhost':12345
- www.ex####ion.d9x.ru/ips/logger.php?ac######################################################################################################################
- DNS ASK www.ex####ion.d9x.ru
- ClassName: 'Shell_TrayWnd' WindowName: ''