Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Intel(R) Graphic control' = '%WINDIR%\Intel(R) Graphic control aucl2.exe'
- <Имя диска съемного носителя>:\Film.exe
- [<HKCU>\Software\yahoo\pager]
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\hackym1[1].asp
- C:\Film.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\2VAZY7AN\getlink.wen[1]
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\getlink.wen[1]
- %WINDIR%\Intel(R) Graphic control aucl2.exe
- <SYSTEM32>\wbem\Performance\WmiApRpl_new.ini
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\getlink.wen[1]
- 'www.es###.somee.com':80
- 'ge###nk.wen.su':80
- 'localhost':1036
- www.es###.somee.com/view/hackym1.asp?id##################################
- ge###nk.wen.su/
- DNS ASK www.es###.somee.com
- DNS ASK ge###nk.wen.su
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: '' WindowName: 'Instant Message'
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'Indicator' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''