Техническая информация
- 'C:\XY.comНАБъґ«Лµ\login.exe' "<Полный путь к вирусу>"
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\!update_XY.com[1].txt
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\index[1]
- C:\XY.comНАБъґ«Лµ\gamever.txt
- C:\XY.comНАБъґ«Лµ\login.exe
- %HOMEPATH%\Desktop\XY.comНАБъґ«Лµ.lnk
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\!update_XY.com[1].txt
- 'xy.com':80
- 'cd#.##cs.yaowan.com':80
- 'localhost':1035
- xy.com/landers/index
- cd#.##cs.yaowan.com/update/!update_XY.com.txt?17####
- DNS ASK xy.com
- DNS ASK cd#.##cs.yaowan.com
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''