Техническая информация
- '%TEMP%\systemspeedup.exe' -affilid=128807
- '%TEMP%\systemspeedup.exe' (загружен из сети Интернет)
- '<SYSTEM32>\cmd.exe' /c %TEMP%\scratch.bat
- '<SYSTEM32>\ping.exe' -n 0 127.0.0.1
- '<SYSTEM32>\schtasks.exe' /QUERY /TN "systemspeedup" /XML ONE
- '<SYSTEM32>\schtasks.exe' /delete /tn "systemspeedup" /f
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\YPORKZYZ\count[1].php
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\count[2].php
- %TEMP%\scratch.bat
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\2VAZY7AN\count[1].php
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\count[1].php
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\ssupsetup_binstall3[1].exe
- %TEMP%\systemspeedup.exe
- %TEMP%\systemspeedup.exe
- 'so###.illyx.com':80
- 'localhost':1035
- so###.illyx.com/task/systemspeedup/count.php?si##################
- so###.illyx.com/task/systemspeedup/count.php?si######################
- so###.illyx.com/task/systemspeedup/count.php?si####################
- so###.illyx.com/setup/ressources/partenaires_financiers/SYSTEMSPEEDUP/ssupsetup_binstall3.exe
- DNS ASK so###.illyx.com
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: 'MS_WebcheckMonitor' WindowName: '(null)'
- ClassName: 'MS_AutodialMonitor' WindowName: '(null)'