Техническая информация
- %WINDIR%\Happy88_B003_lm311115.exe
- %WINDIR%\Happy88_B003_lm311115.exe (загружен из сети Интернет)
- %PROGRAM_FILES%\Internet Explorer\IEXPLORE.EXE http://21#.##.16.130:82/yese.htm
- <SYSTEM32>\taskkill.exe /f /im 99Lover.exe
- %WINDIR%\Happy88_B003_lm311115.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\Happy88_B003_lm311115[1].exe
- 'localhost':1039
- '21#.#1.16.130':82
- 'localhost':1036
- 'jh.#1lm.com':80
- jh.#1lm.com/jh/Happy88_B003_lm311115.exe
- DNS ASK jh.#1lm.com
- '<IP-адрес в локальной сети>':1037
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: '' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''