Техническая информация
- 'C:\Del.exe' "C:\svchosr.exe"
- 'C:\svchost.exe'
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\rjb_hqgg[1].php
- C:\SkinH_EL.dll
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\ikre[1]
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\86wulian[1]
- C:\svchost.exe
- C:\svchosr.exe
- C:\DelFile.sys
- C:\Del.exe
- C:\SkinH_EL.dll
- C:\Del.exe
- C:\svchosr.exe
- 'b.###ne.qq.com':80
- 'www.ik#e.cc':80
- 'www.je#i.cn':80
- 'localhost':1035
- 'www.86###ian.com':80
- b.###ne.qq.com/cgi-bin/blognew/blog_output_data?ui#############################
- www.ik#e.cc/
- www.86###ian.com/
- www.je#i.cn/xiaov1z3/rjb_hqgg.php?bh#################################################################################################################
- DNS ASK b.###ne.qq.com
- DNS ASK www.ik#e.cc
- DNS ASK www.86###ian.com
- DNS ASK www.je#i.cn
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: 'MS_WebcheckMonitor' WindowName: '(null)'
- ClassName: 'MS_AutodialMonitor' WindowName: '(null)'