Техническая информация
- <SYSTEM32>\dsound.dll файлом <SYSTEM32>\dsound.dll.dat
- <SYSTEM32>\dllcache\dsound.dll файлом <SYSTEM32>\dllcache\dsound.dll
- '%TEMP%\Temp\111.exe'
- '%TEMP%\Temp\King CS0L Plug V1.6.exe'
- '<SYSTEM32>\cmd.exe' /c ""%TEMP%\tempVidio.bat" "
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\ym136[1]
- %TEMP%\tempVidio.bat
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\2VAZY7AN\xiaoku[1].txt
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\king47[1]
- %TEMP%\Temp\111.exe
- %TEMP%\Temp\King CS0L Plug V1.6.exe
- %CommonProgramFiles%\System\kb214463.dla
- %TEMP%\kb214463.sve
- %CommonProgramFiles%\System\kb214463.dla
- %TEMP%\Temp\111.exe
- <SYSTEM32>\dllcache\dsound.dll в <SYSTEM32>\dllcache\dsound.dll.AAJF
- <SYSTEM32>\dsound.dll в <SYSTEM32>\dsound.dll.AAJF
- 'localhost':1040
- 'www.ki##47.com':80
- 'localhost':1036
- 'www.ym##6.com':80
- www.ym##6.com/xiaoku.txt
- www.ki##47.com/
- www.ym##6.com/
- DNS ASK www.ki##47.com
- DNS ASK www.ym##6.com
- ClassName: 'MS_AutodialMonitor' WindowName: '(null)'
- ClassName: 'MS_WebcheckMonitor' WindowName: '(null)'
- ClassName: 'IEFrame' WindowName: '(null)'
- ClassName: '(null)' WindowName: 'Microsoft Internet Explorer'
- ClassName: '' WindowName: '(null)'
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'