Техническая информация
- %HOMEPATH%\Start Menu\Programs\Startup\driverAopddos.exe
- [<HKLM>\SYSTEM\ControlSet001\Services\scftwareajvertize] 'Start' = '00000002'
- <SYSTEM32>\outdosADSL.com -kcom
- <SYSTEM32>\outdosINTERe.exe
- <SYSTEM32>\ping.exe 127.0.0.1 -n 16
- <SYSTEM32>\regsvr32.exe /s <SYSTEM32>\econcmia1ready.dll
- <SYSTEM32>\cmd.exe /c C:\outdosINTERe1.bat
- <SYSTEM32>\cmd.exe /c C:\outdosINTERe2.bat
- C:\BOOTFIX.LOG
- <SYSTEM32>\outdosINTERe.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\rouhostsip2008[1].txt
- <SYSTEM32>\outdosADSL.com
- C:\outdosINTERe2.bat
- C:\outdosINTERe1.bat
- <SYSTEM32>\econcmia1ready.dll
- <SYSTEM32>\outdosINTERe.txt
- C:\BOOTFIX.LOG
- <SYSTEM32>\outdosADSL.com
- <SYSTEM32>\econcmia1ready.dll
- <SYSTEM32>\outdosINTERe.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\rouhostsip2008[1].txt
- <SYSTEM32>\outdosINTERe.txt
- '12#.#24.9.151':80
- '<IP-адрес в локальной сети>':443
- '58.#9.58.20':443
- 'lm######xing.w239.dns911.cn':80
- 12#.#24.9.151/rouhostsip2008.txt?si########
- lm######xing.w239.dns911.cn/rouhostsip2008.txt?si########
- DNS ASK lm######xing.w239.dns911.cn
- ClassName: 'easyclickplus9' WindowName: 'Microsoft Internet Explorer'
- ClassName: 'Shell_TrayWnd' WindowName: ''