Техническая информация
- <SYSTEM32>\ws2help.dll файлом <SYSTEM32>\ws2help.dll
- <SYSTEM32>\cmd.exe /c %TEMP%\mem.bat
- <SYSTEM32>\regsvr32.exe /s /c <SYSTEM32>\safemon.dll
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\get[1].asp
- %TEMP%\mem.bat
- <SYSTEM32>\ws2helpXP.dll
- <SYSTEM32>\safemon.dll
- %TEMP%\20125625526.dll
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\get[1].asp
- <SYSTEM32>\ws2help.dll в <SYSTEM32>\20125625526.dll
- 'ge#.#mslla.com':80
- ge#.#mslla.com/get.asp?ma###########################################################################################################
- DNS ASK ge#.#mslla.com
- ClassName: 'Indicator' WindowName: ''