Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'TopMost_AD_Delay' = '<SYSTEM32>\TopMost_AD_Delay.exe'
- <SYSTEM32>\TopMost_AD_Delay.exe
- %HOMEPATH%\Desktop\우리동네전단지.exe
- C:\ad_current.swf
- 'www.wo######gnecomdoctor.co.kr':1433
- 'www.wo######gnecomdoctor.co.kr':445
- 'www.ng#.kr':80
- 'wp#d':80
- 'wd##19.com':80
- wd##19.com/crm_sw/TopMost_AD_Delay.exe
- www.ng#.kr/IP_Read.aspx
- wd##19.com/crm_sw/%EC%9A%B0%EB%A6%AC%EB%8F%99%EB%84%A4%EC%A0%84%EB%8B%A8%EC%A7%80.exe
- wp#d/wpad.dat
- wd##19.com//ad_img/ad_current.swf
- DNS ASK www.ng#.kr
- DNS ASK www.wo######gnecomdoctor.co.kr
- DNS ASK wp#d
- DNS ASK wd##19.com
- ClassName: 'Indicator' WindowName: '(null)'
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'