Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Internet Settings] 'ProxyServer' = ''
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Internet Settings] 'ProxyEnable' = '00000001'
- %TEMP%\106d04.tmp
- %TEMP%\106e4d.tmp
- %TEMP%\106f48.tmp
- %HOMEPATH%\favorites\Гâ¹ò×÷·»¹ù·½õ¾ [www.zuowg.com].url
- %WINDIR%\bcz.ini
- <Текущая директория>\116795.dat
- %TEMP%\10cde1.tmp
- %TEMP%\10cf2a.tmp
- %TEMP%\10cff6.tmp
- %HOMEPATH%\favorites\Гâ¹ò×÷·»×êô´õ¾ [42724920.ys168.com].url
- %PROGRAMDATA%\thunder network\downloadlib\pub_store.dat
- %TEMP%\106d04.tmp
- %TEMP%\106e4d.tmp
- %TEMP%\106f48.tmp
- %TEMP%\10cde1.tmp
- %TEMP%\10cf2a.tmp
- %TEMP%\10cff6.tmp
- <Текущая директория>\116795.dat
- 'hm.##idu.com':443
- http://www.52##z.com/
- http://www.52##z.com/js.js?15########
- http://www.52##z.com/tj.js?15########
- DNS ASK 52##z.com
- DNS ASK nt#.##dan.edu.cn
- DNS ASK cl####.stat.xunlei.com
- DNS ASK ti##.nist.gov
- DNS ASK hm.##idu.com
- DNS ASK r1##.com
- 'nt#.##dan.edu.cn':123
- 'ti##.nist.gov':123
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebCheckMonitor' WindowName: ''
- '<Текущая директория>\116795.dat'
- '<SYSTEM32>\rundll32.exe' <SYSTEM32>\FirewallControlPanel.dll,ShowNotificationDialog /configure /ETOnly 0 /OnProfiles 6 /OtherAllowed 0 /OtherBlocked 0 /OtherEdgeAllowed 0 /NewBlocked 4 "<Текущая директория>\116795.dat"