Техническая информация
- %HOMEPATH%\Start Menu\Programs\Startup\svchosts.exe
- '%HOMEPATH%\Start Menu\Programs\Startup\svchosts.exe'
- '%HOMEPATH%\Start Menu\Programs\Startup\svchosts.exe' (загружен из сети Интернет)
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\mx1[1].html
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\CFgx[1].txt
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\2a[1].htm
- 'www.ko##o8.cn':80
- 'www.52##xc.cn':80
- 'www.p2##.com':80
- 'di##.kun0.com':80
- 'localhost':1038
- www.ko##o8.cn/CFgx.txt
- www.52##xc.cn/mx1.html
- www.p2##.com/2a.htm
- di##.kun0.com/H/1.exe
- di##.kun0.com/H/3.exe
- DNS ASK www.ko##o8.cn
- DNS ASK www.52##xc.cn
- DNS ASK di##.kun0.com
- DNS ASK www.p2##.com
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: 'MS_WebcheckMonitor' WindowName: '(null)'
- ClassName: 'MS_AutodialMonitor' WindowName: '(null)'