Техническая информация
- %WINDIR%\Explorer.EXE
- <SYSTEM32>\svchost.exe
- <SYSTEM32>\lsass.exe
- <SYSTEM32>\csrss.exe
- <SYSTEM32>\spoolsv.exe
- C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\KHCL6TGP\desktop.ini
- C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\OJQ1A34B\desktop.ini
- C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\F1BEPTXS\desktop.ini
- %TEMP%\7af3996f
- C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\6783MTOV\desktop.ini
- C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\OJQ1A34B\desktop.ini
- C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\F1BEPTXS\desktop.ini
- C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\6783MTOV\desktop.ini
- C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\KHCL6TGP\desktop.ini
- %TEMP%\7af3996f
- 'ip####pport.info':80
- ip####pport.info/shark/pwe.php?dm##
- ip####pport.info/shark/pwe.php?qr#####################################
- DNS ASK ip####pport.info
- '<IP-адрес в локальной сети>':1036