Техническая информация
- <SYSTEM32>\winlogon.exe
- <SYSTEM32>\winlogon.exe
- %TEMP%\1a228.tmp
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\209768241201262702754157[1]
- %TEMP%\18f98.tmp
- %TEMP%\19a19.tmp
- %TEMP%\1a228.tmp
- %TEMP%\19a19.tmp
- %TEMP%\18f98.tmp
- 'ke#####314.blog.163.com':80
- ke#####314.blog.163.com/blog/static/209768241201262702754157/
- DNS ASK ke#####314.blog.163.com
- ClassName: 'Shell_TrayWnd' WindowName: ''