Техническая информация
- %TEMP%\system.exe
- %TEMP%\20.exe0.exe
- %TEMP%\20.exe
- %TEMP%\TubePlayer.ver.6.exe
- %TEMP%\20.exe0.exe (загружен из сети Интернет)
- <SYSTEM32>\svchost.exe
- %TEMP%\20.exe0.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\H43HV8809Y65[1]
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\2VAZY7AN\coke[1]
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\up[1].php
- %TEMP%\20.exe
- %TEMP%\TubePlayer.ver.6.exe
- %TEMP%\system.exe
- %TEMP%\20.exe
- 'localhost':1039
- 'se####ty-domain.net':80
- 'br###ss78jh.cn':80
- 'do#####d-everything.com':80
- 'localhost':1037
- 'ca###otnet.com':80
- se####ty-domain.net/H43HV8809Y65/
- br###ss78jh.cn/coke.exe?
- do#####d-everything.com/lr/11.php?da###############################################################################
- ca###otnet.com/up.php?i=#########
- DNS ASK se####ty-domain.net
- DNS ASK br###ss78jh.cn
- DNS ASK do#####d-everything.com
- DNS ASK ca###otnet.com
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'IEFrame' WindowName: ''
- ClassName: '' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''