Техническая информация
- '%APPDATA%\Roaming\dire_expless_303.exe'
- '%APPDATA%\Roaming\dire_expless_303.exe' (загружен из сети Интернет)
- <LS_APPDATA>\Microsoft\Windows\Temporary Internet Files\Content.IE5\YF7T7AK2\KYN1Hw[1]
- <LS_APPDATA>\Microsoft\Windows\Temporary Internet Files\Content.IE5\BOWDBRP7\IE9CompatViewList[1].xml
- %APPDATA%\Roaming\dire_expless_303.exe
- <LS_APPDATA>\Microsoft\Windows\Temporary Internet Files\Content.IE5\6P5SDOMI\dire_expless_303[1].jpg
- '20#.#6.232.182':443
- 'localhost':59434
- '20#.#6.232.182':80
- 'go#.gl':80
- 'localhost':56636
- 'localhost':50757
- 'ad##b.org':80
- 20#.#6.232.182/IE9CompatViewList.xml
- go#.gl/KYN1Hw
- ad##b.org/photos/zp-core/images/dire_expless_303.jpg
- DNS ASK dn#.##ftncsi.com
- DNS ASK ie######t.ie.microsoft.com
- DNS ASK ur#.##crosoft.com
- DNS ASK ad##b.org
- DNS ASK go#.gl
- ClassName: 'MS_WebCheckMonitor' WindowName: '(null)'
- ClassName: 'MS_WINHELP' WindowName: '(null)'
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: 'MS_AutodialMonitor' WindowName: '(null)'