Техническая информация
- '%WINDIR%\1co6ca0TlleFzANhZgBe.exe'
- %TEMP%\tmp2.tmp.jpg
- %TEMP%\dw.log
- %TEMP%\86A6B.dmp
- %WINDIR%\1co6ca0TlleFzANhZgBe.exe
- %WINDIR%\Microsoft.NET\Framework\v2.0.50727\CONFIG\security.config.cch.new
- %WINDIR%\Microsoft.NET\Framework\v2.0.50727\CONFIG\enterprisesec.config.cch.new
- %WINDIR%\Microsoft.NET\Framework\v2.0.50727\CONFIG\enterprisesec.config.cch.new в %WINDIR%\Microsoft.NET\Framework\v2.0.50727\CONFIG\enterprisesec.config.cch
- %WINDIR%\Microsoft.NET\Framework\v2.0.50727\CONFIG\security.config.cch.new в %WINDIR%\Microsoft.NET\Framework\v2.0.50727\CONFIG\security.config.cch
- 'im##.gulfup.com':80
- 'wp#d':80
- im##.gulfup.com/vxaLQ.jpg
- wp#d/wpad.dat
- DNS ASK im##.gulfup.com
- DNS ASK wp#d
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'