Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'sho9wbox' = '%WINDIR%\sho9wbox\sho9wboxRUN.exe'
- '%WINDIR%\UIODetect.exe'
- '%WINDIR%\sho9wbox\sho9wboxRUN.exe'
- iexplore.exe
- %WINDIR%\sho9wbox\resource\resource.zip
- %WINDIR%\sho9wbox\temp\setup.zip.dow!oad
- %WINDIR%\sho9wbox\temp\setup.zip
- %WINDIR%\sho9wbox\resource\resource.zip.dow!oad
- %WINDIR%\sho9wbox\sho9wboxRUN.exe
- %WINDIR%\UIODetect.exe
- %WINDIR%\sho9wbox\sho9wboxBHO.dll
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\setup[1].zip
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\resource[1].zip
- 'df.##o9wbox.com':80
- df.##o9wbox.com/resource/plugin/install/setup.zip
- df.##o9wbox.com/resource/plugin/ie/resource.zip
- DNS ASK df.##o9wbox.com