Техническая информация
- %WINDIR%\win.ini
- %APPDATA%\microsoft\windows\start menu\programs\startup\bit33.tmp
- iexplore.exe
- Процесс firefox.exe, модуль mswsock.dll
- Процесс iexplore.exe, модуль wininet.dll
- Процесс iexplore.exe, модуль mswsock.dll
- Процесс firefox.exe, модуль nss3.dll
- %TEMP%\nsj35ae.tmp
- %TEMP%\cmd.exe
- %TEMP%\crosscut.dll
- %TEMP%\ceredeuteranope
- %TEMP%\system.dll
- %TEMP%\pl\rule\inline\dvvsetcd01n.hxk
- %TEMP%\pl\rule\inline\notificationbox.css
- %APPDATA%\.purple\smileys\bitf75a.tmp
- %TEMP%\pl\rule\inline\vjscsvrps.dll
- %APPDATA%\channelname\missingtrackvolume\struct\vsmsvr.exe
- %APPDATA%\channelname\missingtrackvolume\struct\lcdefinename.png
- %APPDATA%\channelname\missingtrackvolume\struct\org.freedesktop.avahi.hostnameresolver.xml
- %APPDATA%\channelname\missingtrackvolume\struct\mfc80kor.dll
- %APPDATA%\channelname\missingtrackvolume\struct\systemdeploymentframeworkservice.exe
- %APPDATA%\position\advanced\children\savemode\event-utils.js
- %APPDATA%\channelname\missingtrackvolume\struct\insertcellsbar.xml
- %TEMP%\22213274.lnk
- %APPDATA%\.purple\smileys\bitf75a.tmp
- %APPDATA%\microsoft\windows\start menu\programs\startup\bit33.tmp
- %APPDATA%\.purple\smileys\bitf75a.tmp в %APPDATA%\.purple\smileys\tracert.exe
- '12#.31.0.34':9131
- '13#.#88.40.189':80
- '%TEMP%\cmd.exe'