Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\MediaCenter] 'Start' = '00000002'
- <DRIVERS>\beep.sys
- <SYSTEM32>\e.exe
- <SYSTEM32>\svchost.exe -k krnlsrvc
- %TEMP%\184734_res.tmp
- %TEMP%\178281_res.tmp
- %TEMP%\190343_res.tmp
- %TEMP%\187578_res.tmp
- <SYSTEM32>\e.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\9pz[1]
- %TEMP%\170265_res.tmp
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\cfweb[1].txt
- <SYSTEM32>\RsmrtwC.dll
- <SYSTEM32>\RzmwtjC.dll
- <SYSTEM32>\RnmsttC.dll
- <SYSTEM32>\RvmqtxC.dll
- <SYSTEM32>\RimbtkC.dll
- <SYSTEM32>\e.exe
- 'wo####9.3322.org':5522
- 'localhost':1042
- 'au##.#earch.msn.com':80
- 'localhost':1036
- 'www.9p#.cn':80
- 'wg##.55x.cn':80
- wg##.55x.cn/wgwg/waigua/cfyanzheng.txt
- au##.#earch.msn.com/response.asp?MT###########################
- wg##.55x.cn/wgwg/waigua/cfdown.txt
- www.9p#.cn/?cf
- wg##.55x.cn/wgwg/waigua/cfweb.txt
- DNS ASK wo####9.3322.org
- DNS ASK au##.#earch.msn.com
- DNS ASK www.9p#.cn
- DNS ASK wg##.55x.cn
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: '' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''