Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Modem.scr' = '%WINDIR%\Config\Modem.scr'
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Modem ' = 'C:\Arquivos de programas\Modem.scr'
- %ALLUSERSPROFILE%\Start Menu\Programs\Startup\Modem.scr
- %WINDIR%\Config\Modem.scr
- %WINDIR%\plugin
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\plug1n[1].jpg
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\plug1n[1].sys
- <SYSTEM32>\plug1n.sys
- '<IP-адрес в локальной сети>':80
- 'so####emais.info':80
- 'localhost':1036
- so####emais.info/source/plug1n.jpg
- so####emais.info/source/plug1n.sys
- DNS ASK so####emais.info
- ClassName: 'TabWindowClass' WindowName: ''
- ClassName: 'Internet Explorer_Server' WindowName: ''
- ClassName: 'Shell DocObject View' WindowName: ''
- ClassName: '' WindowName: ''
- ClassName: 'NDDEAgnt' WindowName: 'NetDDE Agent'