Техническая информация
- <SYSTEM32>\dllcache\dsound.dll файлом <SYSTEM32>\dllcache\dsound.dll
- %TEMP%\spoolsv.exe
- %TEMP%\6.exe 8278
- %TEMP%\svchost.exe
- <SYSTEM32>\cmd.exe /c ""%TEMP%\deltemp.bat" "
- <SYSTEM32>\regsvr32.exe "%WINDIR%\UoDo\game.dll" /s
- <SYSTEM32>\dsound.dll.dat
- %WINDIR%\system\TIM6.DRV
- %TEMP%\TIM6.tmp
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\bianfx[1]
- %TEMP%\deltemp.bat
- %WINDIR%\dsound.dll
- %WINDIR%\UoDo\game.dll
- %TEMP%\nsl2.tmp\System.dll
- %TEMP%\spoolsv.exe
- %TEMP%\svchost.exe
- %TEMP%\nsc5.tmp\System.dll
- %TEMP%\nsn4.tmp
- %TEMP%\6.exe
- %TEMP%\nsl2.tmp\System.dll
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\bianfx[1]
- %TEMP%\spoolsv.exe
- %TEMP%\TIM6.tmp
- %TEMP%\nsc5.tmp\System.dll
- %TEMP%\6.exe
- <SYSTEM32>\dsound.dll в <SYSTEM32>\dsound.dll.bak
- <SYSTEM32>\dllcache\dsound.dll в <SYSTEM32>\dllcache\dsound.dll.bak
- 'www.bi##fx.tk':80
- www.bi##fx.tk/
- DNS ASK www.bi##fx.tk
- ClassName: 'Shell_TrayWnd' WindowName: ''