Техническая информация
- '%PROGRAM_FILES%\Internet Explorer\IEXPLORE.EXE' http://www.xs##.info/index/index3.htm
- '<SYSTEM32>\wscript.exe' "%TEMP%\aa.vbs"
- %TEMP%\aa.vbs
- 'localhost':1039
- 'localhost':1037
- 'localhost':1035
- DNS ASK p1.#####.####u.google.baidu.com.baidu163so.info
- DNS ASK www.xs##.info
- ClassName: 'IEFrame' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'EDIT' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: '' WindowName: ''