Техническая информация
- [<HKCU>\Software\Microsoft\Internet Explorer\Extensions\{F2648D0C-0033-4E34-A0DA-473C42B0A99A}] 'Exec' = 'http://www.vogoo.net/?from='
- %PROGRAM_FILES%\SZMedia\ielock\Stat.exe iemonhits
- %PROGRAM_FILES%\SZMedia\ielock\IEMon.exe
- %TEMP%\nsw2.tmp\System.dll
- %PROGRAM_FILES%\SZMedia\ielock\data.dsz
- %PROGRAM_FILES%\SZMedia\ielock\data.ini
- %PROGRAM_FILES%\Internet Explorer\SIGNUP\159.ico
- %PROGRAM_FILES%\SZMedia\ielock\data.ldb
- %TEMP%\nsw2.tmp\AccessControl.dll
- %PROGRAM_FILES%\SZMedia\ielock\tbword.szd
- %PROGRAM_FILES%\SZMedia\ielock\config.ini
- <Текущая директория>\config.ini
- %TEMP%\nsw2.tmp\nsProcess.dll
- %PROGRAM_FILES%\SZMedia\ielock\tsmfl.dll
- %PROGRAM_FILES%\SZMedia\ielock\IEMon.exe
- %PROGRAM_FILES%\SZMedia\ielock\Stat.exe
- %PROGRAM_FILES%\Internet Explorer\SIGNUP\159.ico
- %PROGRAM_FILES%\SZMedia\ielock\data.ldb
- %PROGRAM_FILES%\SZMedia\ielock\tsmfl.dll в %PROGRAM_FILES%\SZMedia\ielock\2235.dll
- 'co####.netbarad.net':80
- 'hi##.#etbarad.net':80
- co####.netbarad.net/homepagepic.aspx?us###############################
- hi##.#etbarad.net/hits.aspx?ma#######################################################
- DNS ASK co####.netbarad.net
- DNS ASK hi##.#etbarad.net