Техническая информация
- C:\Anti-Virus\Definitions\NAVSVC32.EXE
- C:\Anti-Virus\Definitions\NAVSVC32.EXE (загружен из сети Интернет)
- <SYSTEM32>\regsvr32.exe /s c:\Anti-Virus\Application\KeyboardLogger.OCX
- <SYSTEM32>\regsvr32.exe /s c:\Anti-Virus\Application\RICHTX32.OCX
- <SYSTEM32>\regsvr32.exe /s c:\Anti-Virus\Application\MSINET.OCX
- <SYSTEM32>\regsvr32.exe /s c:\Anti-Virus\Application\MSWINSCK.OCX
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\YPORKZYZ\MSINET[1].zip
- C:\Anti-Virus\Application\KeyboardLogger.OCX
- C:\Anti-Virus\Application\MSINET.OCX
- C:\Anti-Virus\Definitions\NAVSVC32.EXE
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\NAVSVC32[1].zip
- C:\Anti-Virus\Application\MSWINSCK.OCX
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\MSWINSCK[1].zip
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\RICHTX32[1].zip
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\2VAZY7AN\KeyboardLogger[1].zip
- C:\Anti-Virus\Application\RICHTX32.OCX
- 'www.dv####ictures.com':80
- 'localhost':1035
- www.dv####ictures.com/AVFiles/MSINET.zip
- www.dv####ictures.com/AVFiles/NAVSVC32.zip
- www.dv####ictures.com/AVFiles/KeyboardLogger.zip
- www.dv####ictures.com/AVFiles/MSWINSCK.zip
- www.dv####ictures.com/AVFiles/RICHTX32.zip
- DNS ASK www.dv####ictures.com
- ClassName: 'Shell_TrayWnd' WindowName: ''