Техническая информация
- [<HKLM>\SOFTWARE\Classes\msm4file\shell\open\command] '' = ''
- %PROGRAM_FILES%\Internet Explorer\IEXPLORE.EXE http://58.###.198.119:8080/count.asp?ma################################ Windows XP&flag=fac166ca13297b62a7103ae0bb62a92f&user=<Имя вируса>
- %CommonProgramFiles%\iexplore.exe
- %WINDIR%\Downloaded Program Files\msdn.exe
- %WINDIR%\Downloaded Program Files\РЎУОП·.exe
- %PROGRAM_FILES%\Internet Explorer\MUI\iexplore.exe
- %APPDATA%\Microsoft\Internet Explorer\Quick Launch\Internet Exqlorer.exe
- %HOMEPATH%\Start Menu\Internet Exqlorer.exe
- C:\b.txt
- %HOMEPATH%\Desktop\Internet Exqlorer.exe
- %WINDIR%\Downloaded Program Files\Mozilla Firefox .exe
- %WINDIR%\Downloaded Program Files\TT.exe
- %WINDIR%\Downloaded Program Files\Internet Exqlorer.exe
- %WINDIR%\Downloaded Program Files\360 дЇААЖч.exe
- %WINDIR%\Downloaded Program Files\ЛС№·дЇААЖч.exe
- %WINDIR%\Downloaded Program Files\МФ±¦Нш.exe
- %WINDIR%\Downloaded Program Files\°БУОдЇААЖч.exe
- %WINDIR%\Downloaded Program Files\TheWorld.exe
- C:\b.txt
- '58.##8.198.119':8080
- 'localhost':1037
- 'www.61##.com':80
- www.61##.com/ok/???###########
- www.61##.com/ok/TheWorld.htm
- www.61##.com/ok/???#######
- www.61##.com/ok/TT.htm
- www.61##.com/ok/Internet%20Exqlorer.htm
- www.61##.com/ok/360SE.htm
- www.61##.com/ok/Mozilla%20Firefox%20.htm
- DNS ASK www.61##.com
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: '' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''