Техническая информация
- '<SYSTEM32>\regsvr32.exe' <SYSTEM32>\dm.dll /s
- <SYSTEM32>\dm.dll
- %APPDATA%\E_UIEngine\90afea1eeb37be7a93471c36152ab43a\90afea1eeb37be7a93471c36152ab43a.jpg
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\cfdike[1]
- %APPDATA%\E_UIEngine\a1e089453624860993e9cf5a098b64fb\a1e089453624860993e9cf5a098b64fb.jpg
- %TEMP%\3.tmp
- <SYSTEM32>\BackInC.sys
- <SYSTEM32>\PastRBaba.sys
- %TEMP%\2.tmp
- %TEMP%\1.tmp
- %TEMP%\2.tmp
- %TEMP%\3.tmp
- %TEMP%\1.tmp
- <SYSTEM32>\PastRBaba.sys
- <SYSTEM32>\BackInC.sys
- 'www.cf##ke.cc':80
- 'localhost':1037
- www.cf##ke.cc/
- DNS ASK www.cf##ke.cc
- ClassName: 'IEFrame' WindowName: '(null)'
- ClassName: 'MS_AutodialMonitor' WindowName: '(null)'
- ClassName: 'MS_WebcheckMonitor' WindowName: '(null)'
- ClassName: '(null)' WindowName: 'Microsoft Internet Explorer'
- ClassName: '' WindowName: '(null)'
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'