Техническая информация
- %WINDIR%\Microsoft.NET\Framework\v4.0.30319\dfsvc.exe
- <SYSTEM32>\rundll32.exe dfshim.dll,ShOpenVerbApplication http://www.tm##a.com/TMIcon/TMIcon.application
- <SYSTEM32>\taskkill.exe /f /im "tmicon.exe"
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\CAC5IB8X.log
- %TEMP%\Deployment\2WMBPAGP.J9L\KYDPOJ8B.MGP.application
- %TEMP%\Deployment\2WMBPAGP.J9L\KYDPOJ8B.MGP.application
- 'www.tm##a.com':80
- 'wp#d':80
- www.tm##a.com/TMIcon/TMIcon.application
- wp#d/wpad.dat
- DNS ASK www.tm##a.com
- DNS ASK wp#d
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: '' WindowName: ''