Техническая информация
- <SYSTEM32>\cmd.exe /c c:\msnstart.bat
- <SYSTEM32>\rundll32.exe "%PROGRAM_FILES%\Messenger\msn.dll",LaunchLogonUI
- [<HKLM>\SOFTWARE\Microsoft\MessengerService]
- [<HKCU>\Software\Microsoft\MessengerService]
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\res[1].php
- %TEMP%\158515.tmp
- %PROGRAM_FILES%\Messenger\msn.dll
- C:\msnstart.bat
- %TEMP%\158515.tmp
- 'a1###2008.com':80
- 'localhost':1035
- a1###2008.com/mesenger/res.php?v=###############
- DNS ASK a1###2008.com
- ClassName: 'Shell_TrayWnd' WindowName: ''