Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\MediaCenter] 'Start' = '00000002'
- '<SYSTEM32>\hook.dll'
- '<SYSTEM32>\svchost.exe' -k krnlsrvc
- %TEMP%\174078_index.tmp
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\cfxiaogui[1]
- <SYSTEM32>\hook.dll
- <SYSTEM32>\SouGoo.ime
- <SYSTEM32>\toushi1.dll
- <SYSTEM32>\Wluesnlw.dll
- <SYSTEM32>\hook.dll
- %TEMP%\174078_index.tmp в <SYSTEM32>\Wluesnlw.dll
- 'fa####0.3322.org':7286
- 'www.cf###ogui.com':80
- 'localhost':1036
- www.cf###ogui.com/
- DNS ASK fa####0.3322.org
- DNS ASK www.cf###ogui.com
- ClassName: 'MS_AutodialMonitor' WindowName: '(null)'
- ClassName: 'MS_WebcheckMonitor' WindowName: '(null)'
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: 'CicLoaderWndClass' WindowName: '(null)'