Техническая информация
- '%TEMP%\aa.exe'
- '%HOMEPATH%\VV.exe'
- '<SYSTEM32>\notepad.exe' %HOMEPATH%\Readme.txt
- %TEMP%\aa.exe
- %TEMP%\clicky.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\xvid-for-all[1]
- %HOMEPATH%\Readme.txt
- %TEMP%\aut1.tmp
- %HOMEPATH%\VV.exe
- %TEMP%\aut2.tmp
- %HOMEPATH%\Readme.txt
- %HOMEPATH%\VV.exe
- %TEMP%\aut2.tmp
- %TEMP%\aut1.tmp
- 'xv####or-all.com':80
- 'localhost':1035
- xv####or-all.com/
- DNS ASK xv####or-all.com
- ClassName: 'MS_WebcheckMonitor' WindowName: '(null)'
- ClassName: '(null)' WindowName: 'Rocketfuel Installer - Xvid Player'
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: 'MS_AutodialMonitor' WindowName: '(null)'