Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'ActiveDeskTop' = '%PROGRAM_FILES%\ActiveDeskTop\ActiveDeskTop.exe'
- %WINDIR%\ActiveDeskTop_auction.ico
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\ULU3YH2D\auction[1].ico
- %HOMEPATH%\Desktop\11№ш°Ў.url
- %HOMEPATH%\Desktop\їБјЗ.url
- %HOMEPATH%\Desktop\Gё¶ДП.url
- %WINDIR%\ActiveDeskTop_gmarket.ico
- %PROGRAM_FILES%\ActiveDeskTop\ActiveDeskTop.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\ActiveDeskTop[1].exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\11st[1].ico
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\0D6B6PI5\gmarket[1].ico
- %WINDIR%\ActiveDeskTop_11st.ico
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\0D6B6PI5\gmarket[1].ico
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\ULU3YH2D\auction[1].ico
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\ActiveDeskTop[1].exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\11st[1].ico
- 'de####p.funtvi.kr':80
- 'localhost':1037
- 'www.na##r.com':80
- de####p.funtvi.kr/desktop/gmarket.ico
- de####p.funtvi.kr/desktop/auction.ico
- de####p.funtvi.kr/desktop/11st.ico
- de####p.funtvi.kr/desktop/ActiveDeskTop.exe
- de####p.funtvi.kr/count/counter_insert.php?pi#######################################
- DNS ASK de####p.funtvi.kr
- DNS ASK www.na##r.com
- ClassName: 'Indicator' WindowName: ''