Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'RunmeAtStartup' = 'C:\p07.exe'
- C:\p07.exe
- C:\ґу·Й0725°ж.exe
- <SYSTEM32>\D53F1BE0BE97FEBD59B6C07D7EDE7144.log
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\dafei1[1].html
- <SYSTEM32>\xvhost.sb
- C:\ґу·Й0725°ж.exe
- C:\p07.exe
- 'cf.##0it.com':80
- 'z.##sfu.com':8787
- 'localhost':1036
- 'www.02##j.com':80
- www.02##j.com/msgg.htm
- www.02##j.com/on.htm
- www.02##j.com/var3.9.htm
- cf.##0it.com/dafei1.html
- DNS ASK z.##sfu.com
- DNS ASK cf.##0it.com
- DNS ASK www.02##j.com
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''