Техническая информация
- '<LS_APPDATA>\xpmrun\winini.exe'
- '%HOMEPATH%\3bjxhj9k4769639\xpminsc9.exe'
- '%HOMEPATH%\3bjxhj9k4769639\JavaUpdate.exe' SsFkxAJyD.HDU
- '<LS_APPDATA>\xpmrun\winini.exe' (загружен из сети Интернет)
- <LS_APPDATA>\xpmrun\libwinpthread-1.dll
- <LS_APPDATA>\xpmrun\winini.exe
- <LS_APPDATA>\xpmrun\xpmwin32f.exe
- <LS_APPDATA>\xpmrun\xpmwin32.exe
- %HOMEPATH%\3bjxhj9k4769639\xpminsc9.exe
- %HOMEPATH%\3bjxhj9k4769639\JavaUpdate.exe
- %HOMEPATH%\3bjxhj9k4769639\iuQseoDqTj.QUX
- %HOMEPATH%\3bjxhj9k4769639\JIAYRUyuHy.XEQ
- %HOMEPATH%\3bjxhj9k4769639\SsFkxAJyD.HDU
- %HOMEPATH%\3bjxhj9k4769639\SsFkxAJyD.HDU
- %HOMEPATH%\3bjxhj9k4769639\JIAYRUyuHy.XEQ
- %HOMEPATH%\3bjxhj9k4769639\iuQseoDqTj.QUX
- %HOMEPATH%\3bjxhj9k4769639\JavaUpdate.exe
- 'co##.com':80
- 'wp#d':80
- co##.com/ohJAx1Kx9giQ/libwinpthread-1.dll
- co##.com/ngtLTS1Ryhuj/xpmwin32.exe
- wp#d/wpad.dat
- co##.com/YVZvVCMX7wWE/winini.exe
- DNS ASK co##.com
- DNS ASK wp#d
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: 'EDIT' WindowName: '(null)'