Техническая информация
- '<SYSTEM32>\rundll32.exe'
- '%PROGRAM_FILES%\Internet Explorer\IEXPLORE.EXE' http://ju.##obao.com/tg/home.htm?sp##################################################################
- <SYSTEM32>\rundll32.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\ip[1].gif
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\2VAZY7AN\ip[1].gif
- C:\debug_log_loader.txt
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\dl[1].gif
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\ip[1].gif
- 'vi###n.xp3.biz':80
- vi###n.xp3.biz/dl.gif
- vi###n.xp3.biz/ip.gif
- DNS ASK vi###n.xp3.biz