Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'winlogon' = '%WINDIR%\svchost.exe'
- %WINDIR%\WinIP.txt
- %TEMP%\dost32.a3x
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\dost32[1].a3x
- 'go#######mthe.googlecode.com':80
- go#######mthe.googlecode.com/files/dost32.a3x
- DNS ASK go#######mthe.googlecode.com
- '<IP-адрес в локальной сети>':1035
- ClassName: 'Shell_TrayWnd' WindowName: ''