Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Active Setup\Installed Components\{C679402B-1A22-C8A1-FA98-52E72CDA72D8}] 'stubpath' = ''
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'mwu' = 'muw.vbs'
- <SYSTEM32>\windows updat.exe
- <SYSTEM32>\wscript.exe "%WINDIR%\mwu.vbs"
- %WINDIR%\Explorer.EXE
- msnmsgr.exe
- %WINDIR%\mwu.vbs
- %APPDATA%\sofdll.dat
- <SYSTEM32>\softwerdll
- %TEMP%\$inst\2.tmp
- %TEMP%\$inst\temp_0.tmp
- <SYSTEM32>\windows updat.exe
- <SYSTEM32>\windows updat.exe
- %TEMP%\$inst\temp_0.tmp
- 'www.fr###ebtown.com':80
- 'localhost':1036
- www.fr###ebtown.com/dzdz/windows_update.exe
- DNS ASK www.fr###ebtown.com
- '<IP-адрес в локальной сети>':1037
- ClassName: 'Shell_TrayWnd' WindowName: ''