Техническая информация
- <SYSTEM32>\dsound.dll файлом <SYSTEM32>\dsound.dll.dat
- <SYSTEM32>\dllcache\dsound.dll файлом <SYSTEM32>\dllcache\dsound.dll
- '%TEMP%\Temp\mmCSO.exe'
- '%TEMP%\Temp\јСјС.EXE'
- '%WINDIR%\regedit.exe' /s "<SYSTEM32>\\D3D_2_Opengl.reg"
- '<SYSTEM32>\cmd.exe' /c ""%TEMP%\tempVidio.bat" "
- %TEMP%\Temp\black.she
- %TEMP%\Temp\SkinH_EL.dll
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\52hln[1]
- <SYSTEM32>\D3D_2_Opengl.reg
- %TEMP%\tempVidio.bat
- %TEMP%\Temp\mmCSO.exe
- %TEMP%\Temp\јСјС.EXE
- %CommonProgramFiles%\System\kb164586.dla
- %TEMP%\kb164586.sve
- %TEMP%\Temp\black.she
- %TEMP%\Temp\SkinH_EL.dll
- %CommonProgramFiles%\System\kb164586.dla
- %TEMP%\Temp\mmCSO.exe
- <SYSTEM32>\dllcache\dsound.dll в <SYSTEM32>\dllcache\dsound.dll.ZLHZ
- <SYSTEM32>\dsound.dll в <SYSTEM32>\dsound.dll.ZLHZ
- 'u.##5.com':80
- 'www.52##n.com':80
- 'localhost':1037
- u.##5.com/file/f6dd1f3133
- www.52##n.com/
- DNS ASK u.##5.com
- DNS ASK www.52##n.com
- ClassName: 'MS_WebcheckMonitor' WindowName: '(null)'
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: 'RegEdit_RegEdit' WindowName: '(null)'
- ClassName: 'MS_AutodialMonitor' WindowName: '(null)'