Техническая информация
- '<SYSTEM32>\jiajia.exe'
- '<SYSTEM32>\svchost.exe'
- <SYSTEM32>\svchost.exe
- <SYSTEM32>\SkinH_EL.dll
- %HOMEPATH%\Favorites\Нв№ТЧч·»ЧКФґХѕ [42724920.ys168.com].url
- %HOMEPATH%\Favorites\Нв№ТЧч·»№Щ·ЅХѕ [www.zuowg.com].url
- %TEMP%\28ae2.tmp
- %HOMEPATH%\Local Settings\<INETFILES>\Content.IE5\U98D4X8H\52hln[1]
- %HOMEPATH%\Local Settings\<INETFILES>\Content.IE5\KHMHGZ4F\xxzwg[1]
- %TEMP%\2ae0b.tmp
- %TEMP%\E_N4\HtmlView.fne
- %TEMP%\E_N4\krnln.fnr
- <SYSTEM32>\jiajia.exe
- %TEMP%\E_N4\eAPI.fne
- %TEMP%\25421.tmp
- %TEMP%\E_N4\krnln.fne
- %TEMP%\E_N4\shell.fne
- <SYSTEM32>\SkinH_EL.dll
- %TEMP%\28ae2.tmp
- %TEMP%\2ae0b.tmp
- %TEMP%\25421.tmp
- %HOMEPATH%\Favorites\Нв№ТЧч·»ЧКФґХѕ [42724920.ys168.com].url
- %HOMEPATH%\Favorites\Нв№ТЧч·»№Щ·ЅХѕ [www.zuowg.com].url
- 'www.go##ai.com':80
- 'www.52##n.com':80
- 'localhost':1039
- 'www.xx##g.com':80
- http://www.52##n.com/
- http://www.go##ai.com/f/8X8714mCVUZtKXUg
- http://www.xx##g.com/
- DNS ASK www.52##n.com
- DNS ASK www.go##ai.com
- DNS ASK www.xx##g.com
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''