Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Adobe Reader Speed Launoher' = '<SYSTEM32>\tski11.exe'
- %WINDIR%\exp1orer.exe
- <SYSTEM32>\tski11.exe
- %HOMEPATH%\Desktop\article
- %HOMEPATH%\Desktop\article:Zone.Identifier
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\article[1]
- <SYSTEM32>\tski11.exe
- %WINDIR%\exp1orer.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\article[1]
- 'localhost':1052
- 'www.16##bc.net':80
- 'www.st##kq.org':80
- 'www.cn##s.com':80
- 'wp#d':80
- 'www.s8##8.com':80
- '67.##5.160.76':80
- www.st##kq.org/
- www.16##bc.net/_News/List.aspx
- 67.##5.160.76/newscool-03/article?mi###################
- 67.##5.160.76/newscool-03/article?mi#################
- www.s8##8.com/forum-33-1.html
- wp#d/wpad.dat
- www.cn##s.com/fc/index7StockFuture.asp
- 67.##5.160.76/
- DNS ASK www.16##bc.net
- DNS ASK www.st##kq.org
- DNS ASK tw.###log.yahoo.com
- DNS ASK www.cn##s.com
- DNS ASK wp#d
- DNS ASK www.s8##8.com
- DNS ASK tw.###ck.yahoo.com
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''