Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'SNU32' = '"%HOMEPATH%\My Documents\BinarySoft\snu.exe" -ga'
- скрытых файлов
- %HOMEPATH%\My Documents\BinarySoft\wtlex.exe -tx
- %HOMEPATH%\My Documents\BinarySoft\snu.exe -gp
- %HOMEPATH%\My Documents\BinarySoft\wtlex.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\tna[1].dll
- %HOMEPATH%\My Documents\BinarySoft\tna.dll
- %HOMEPATH%\My Documents\BinarySoft\setfile.zip
- %HOMEPATH%\My Documents\BinarySoft\snu.exe
- %HOMEPATH%\My Documents\BinarySoft\tnb.dll
- %HOMEPATH%\My Documents\BinarySoft\setfile.zip
- 'bo#####s99.pnsweb.net':80
- bo#####s99.pnsweb.net/update/tna.dll
- bo#####s99.pnsweb.net/install.asp?ma#########################
- DNS ASK bo#####s99.pnsweb.net
- ClassName: 'SHELLDLL_DefView' WindowName: ''
- ClassName: 'SysListView32' WindowName: 'FolderView'
- ClassName: 'WorkerW' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'Indicator' WindowName: ''