Техническая информация
- <SYSTEM32>\regsvr32.exe /s /c "%PROGRAM_FILES%\Little_tornado\LittleTornado.dll"
- %PROGRAM_FILES%\Little_tornado\strategy.jpg
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\strategy[1].jpg
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\index.php[1].htm
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\setupinfo[1].asp
- %WINDIR%\yvideo.sfe
- %PROGRAM_FILES%\Little_tornado\xf_cfg.ini
- %PROGRAM_FILES%\Little_tornado\µјєЅ.url
- %PROGRAM_FILES%\Little_tornado\xxf-sign.sig
- %PROGRAM_FILES%\Little_tornado\LittleTornado.dll
- %APPDATA%\Microsoft\Internet Explorer\Quick Launch\µјєЅ.url
- %HOMEPATH%\Start Menu\µјєЅ.url
- %HOMEPATH%\Desktop\µјєЅ.url
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\setupinfo[1].asp
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\strategy[1].jpg
- 'gm#.#oucan.cn':80
- '12#.##odubai.com':80
- 'localhost':1035
- gm#.#oucan.cn/setupinfo.asp?fi##############################################################################
- gm#.#oucan.cn/strategy.jpg
- 12#.##odubai.com/fengyunbang/index.php.htm?tb##
- DNS ASK gm#.#oucan.cn
- DNS ASK 12#.##odubai.com
- '<IP-адрес в локальной сети>':1036
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'ReBarWindow32' WindowName: ''
- ClassName: '' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''