Техническая информация
- '%PROGRAM_FILES%\Internet Explorer\iexplore.exe' http://dn####o77.qbox.me/tc.html?<S######
- <LS_APPDATA>\Microsoft\Windows\Temporary Internet Files\Content.IE5\UEWNTWLX\tc[1].html
- %TEMP%\~DF04F4C04B73A4AC5C.TMP
- %TEMP%\JavaDeployReg.log
- <LS_APPDATA>\Microsoft\Internet Explorer\imagestore\g1bfg6d\imagestore.dat
- <LS_APPDATA>\Microsoft\Internet Explorer\Recovery\High\Active\{68752618-5BCE-11E4-B54D-C2A5F370D8F2}.dat
- C:\5.txt
- <LS_APPDATA>\Microsoft\Windows\Temporary Internet Files\Content.IE5\YIF7DGLM\z[1].txt
- %TEMP%\~DF264B0D61A8DC5AE3.TMP
- <LS_APPDATA>\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{68752616-5BCE-11E4-B54D-C2A5F370D8F2}.dat
- '20#.#6.232.182':443
- 'dn####o77.qbox.me':80
- 'dl.#ll6.cn':80
- dn####o77.qbox.me/tc.html?b6######
- dl.#ll6.cn/z.txt?54########
- DNS ASK dn#.##ftncsi.com
- DNS ASK ie#####t.microsoft.com
- DNS ASK ie#####e.microsoft.com
- DNS ASK ur#.##crosoft.com
- DNS ASK dl.#ll6.cn
- DNS ASK go.###rosoft.com
- DNS ASK dn####o77.qbox.me
- ClassName: 'MS_WebCheckMonitor' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''