Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] 'Userinit' = '<SYSTEM32>\userinit.exe,%HOMEPATH%\My Documents\My Music\TXPlatform.exe,'
- %HOMEPATH%\My Documents\My Music\RCX1.tmp
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\getip[1].asp
- %HOMEPATH%\My Documents\My Music\mydat.dat
- %HOMEPATH%\My Documents\My Music\TXPlatform.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\getip[1].asp
- %HOMEPATH%\My Documents\My Music\TXPlatform.exe
- 'fy##.#hagua911.cn':80
- fy##.#hagua911.cn/fyb/getip.asp?us###################
- DNS ASK fy##.#hagua911.cn
- '<IP-адрес в локальной сети>':1035
- ClassName: 'Shell_TrayWnd' WindowName: ''