Техническая информация
- '%HOMEPATH%\vnc\winvnc.exe' -run
- '%HOMEPATH%\vnc\winvnc.exe' (загружен из сети Интернет)
- [<HKCU>\Software\ORL\WinVNC3]
- %HOMEPATH%\vnc\vnchooks.dll
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\2VAZY7AN\vnchooks[1].dll
- %HOMEPATH%\vnc\vnc.reg
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\YPORKZYZ\vnc[1].reg
- %HOMEPATH%\vnc\winvnc.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\winvnc[1].exe
- %HOMEPATH%\vnc\othread2.dll
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\othread2[1].dll
- 'wo######ion.thesocket.net':80
- wo######ion.thesocket.net/vnchooks.dll
- wo######ion.thesocket.net/vnc.reg
- wo######ion.thesocket.net/winvnc.exe
- wo######ion.thesocket.net/othread2.dll
- DNS ASK wo######ion.thesocket.net
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'