Техническая информация
- %TEMP%\tmp3.tmp.exe
- %TEMP%\tmp2.tmp.exe
- %TEMP%\tmp1.tmp.exe
- "%TEMP%\tmp.exe" (загружен из сети Интернет)
- %TEMP%\CSC4.tmp
- %TEMP%\pxukcjhm.out
- %TEMP%\pxukcjhm.cmdline
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\blackle[1]
- %TEMP%\pxukcjhm.dll
- %TEMP%\RES5.tmp
- %TEMP%\pxukcjhm.0.cs
- %TEMP%\tmp3.tmp.exe
- %TEMP%\tmp2.tmp.exe
- %TEMP%\tmp1.tmp.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\0D6B6PI5\yourmodule[1].exe
- %TEMP%\tmp.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\yourmodule[1].exe
- %TEMP%\pxukcjhm.cmdline
- %TEMP%\pxukcjhm.0.cs
- %TEMP%\pxukcjhm.out
- %TEMP%\pxukcjhm.dll
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\yourmodule[1].exe
- %TEMP%\RES5.tmp
- %TEMP%\CSC4.tmp
- 'localhost':1042
- 'www.bl##kle.com':80
- 'te##.com':80
- 'localhost':1037
- 'localhost':1038
- www.bl##kle.com/
- te##.com/yourmodule.exe
- DNS ASK www.bl##kle.com
- DNS ASK te##.com
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''