Техническая информация
- <SYSTEM32>\regsvr32.exe /s "%APPDATA%\Microsoft\ 431061029.dll
- %WINDIR%\Explorer.EXE
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\ULU3YH2D\x[1].asp
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\SL6TKFAX\jPop[1].xml
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\0D6B6PI5\rnd[1].asp
- %APPDATA%\Microsoft\ 431061029.dll
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\nPop[1].xml
- %APPDATA%\Microsoft\ 431061029.dll
- 'm1.#oozo.cn':80
- 'j1.##style8.com':80
- 'c1.#8oo.com':80
- 'localhost':1036
- '1.###tyle8.com':80
- m1.#oozo.cn/x.asp?nu#####################
- j1.##style8.com/PushFile/jPop.xml?nu########################
- 1.###tyle8.com/PushFile/nPop.xml?nu#####################
- c1.#8oo.com/rnd.asp?nu#####################
- DNS ASK m1.#oozo.cn
- DNS ASK j1.##style8.com
- DNS ASK 1.###tyle8.com
- DNS ASK c1.#8oo.com