Техническая информация
- [<HKCU>\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] 'shell' = 'explorer.exe,C:\Documents and Settings\360.exe'
- 'C:\SeMiniSetup_silent_3003_1008.exe'
- 'C:\zmke.exe'
- '<SYSTEM32>\regsvr32.exe' /s "<SYSTEM32>\soft360.dll"
- %HOMEPATH%\Desktop\Internet Explorer.lnk
- %TEMP%\version.ini
- C:\Documents and Settings\360.txt
- <SYSTEM32>\soft360.dll
- C:\zmke.exe
- C:\SeMiniSetup_silent_3003_1008.exe
- <SYSTEM32>\PerfStringBackup.TMP
- C:\Documents and Settings\360.txt в C:\Documents and Settings\360.exe
- 'co####.ie.sogou.com':80
- co####.ie.sogou.com/version.php?h=################################################
- DNS ASK co####.ie.sogou.com
- ClassName: 'Progman' WindowName: 'Program Manager'
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'