Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] ':\Program Files\Common Files\svchtst.exe 201210232193.exe' = '%CommonProgramFiles%\svchtst.exe 201210232193.exe'
- %CommonProgramFiles%\svchtst.exe 201210232193.exe
- C:\DNFЙЁєЕЖчDXЧЁ°жV1.4.exe
- C:\417.exe
- <SYSTEM32>\taskkill.exe /f /im Ksafetray.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\21648805220131223351805[1]
- C:\DNFЙЁєЕЖчDXЧЁ°жV1.4.exe
- C:\417.exe
- C:\DNFЙЁєЕЖчDXЧЁ°жV1.4.exe
- C:\417.exe
- C:\417.exe в %CommonProgramFiles%\svchtst.exe 201210232193.exe
- 'dn####.blog.163.com':80
- 'xx#####1983.gicp.net':9000
- dn####.blog.163.com/blog/static/21648805220131223351805/
- DNS ASK dn####.blog.163.com
- DNS ASK xx#####1983.gicp.net
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: '' WindowName: ''