Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\BITS] 'Start' = '00000002'
- <SYSTEM32>\dllcache\qmgr.dll
- <SYSTEM32>\qmgr.dll файлом <SYSTEM32>\qmgr.dll
- C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\WXO1GBSB\desktop.ini
- C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\SBCPGRAT\desktop.ini
- C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\GX8RO12J\desktop.ini
- C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\4Z4N4J4Z\desktop.ini
- <DRIVERS>\tcpip4.sys
- <SYSTEM32>\Ip4fw.ini
- C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\SBCPGRAT\desktop.ini
- C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\GX8RO12J\desktop.ini
- C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\WXO1GBSB\desktop.ini
- <SYSTEM32>\Ip4fw.ini
- C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\4Z4N4J4Z\desktop.ini
- <SYSTEM32>\qmgr.dll в <DRIVERS>\ip4fw.sys
- '18#.#49.252.181':80
- 18#.#49.252.181/twitter2/twitter.ashx?gu#######################################