Техническая информация
- %TEMP%\460.ocx
- NtCreateMutant, драйвер-обработчик: mtd
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\2VAZY7AN\ceo1[1].rar
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\tongji[1].htm
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\YPORKZYZ\baidu[1]
- %TEMP%\VRMXKIYZ.exe
- %TEMP%\QJLLZEGL.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\ceo[1].rar
- %TEMP%\mtd
- %TEMP%\460.ocx
- %TEMP%\VRMXKIYZ.exe
- %TEMP%\QJLLZEGL.exe
- 'ab#.##fdashen.com':80
- 'www.ba##u.com':80
- 'localhost':1039
- 'localhost':1036
- 'www.dn##dwg.com':80
- www.dn##dwg.com/ceo1.rar
- www.ba##u.com/
- www.dn##dwg.com/tongji.htm
- www.dn##dwg.com/ceo.rar
- ab#.##fdashen.com/index.txt
- DNS ASK www.ba##u.com
- DNS ASK ab#.##fdashen.com
- DNS ASK www.dn##dwg.com
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: '' WindowName: '??????????'
- ClassName: 'Shell_TrayWnd' WindowName: ''