Техническая информация
- '<SYSTEM32>\1.exe'
- '<SYSTEM32>\cacls.exe' <DRIVERS>\etc\hosts /g everyone:r
- '<SYSTEM32>\attrib.exe' +r +a +s +h <DRIVERS>\etc\hosts
- '<SYSTEM32>\cmd.exe' /c <SYSTEM32>\\№э230ТміЈ.bat
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\go[1].html
- <SYSTEM32>\1.exe
- <SYSTEM32>\№э230ТміЈ.bat
- 'yy.##owan.com':80
- 'localhost':1037
- yy.##owan.com/go.html
- DNS ASK yy.##owan.com
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: 'MS_WebcheckMonitor' WindowName: '(null)'
- ClassName: 'MS_AutodialMonitor' WindowName: '(null)'