Техническая информация
- %WINDIR%\regedit.exe
- %WINDIR%\twunk_32.exe
- %WINDIR%\winhlp32.exe
- %WINDIR%\hh.exe
- %WINDIR%\sfk.exe
- %WINDIR%\sleep.exe
- '<SYSTEM32>\ntvdm.exe' -f -i1
- %WINDIR%\Temp\scs2.tmp
- %WINDIR%\Temp\scs1.tmp
- %PROGRAM_FILES%\Tempfiles\WCSININNNQYCH.exe
- %WINDIR%\Temp\scs2.tmp
- %WINDIR%\Temp\scs1.tmp
- 'ta#####site.narod.ru':80
- 'localhost':1039
- 'go##le.ru':80
- http://ta#####site.narod.ru/index.html
- DNS ASK ta#####site.narod.ru
- DNS ASK go##le.ru
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'ConsoleWindowClass' WindowName: 'ntvdm-b3c.b40.380001'