Техническая информация
- <LS_APPDATA>\Microsoft\Windows Media\9.0\WMSDKNSD.XML
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\1[1]
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\2VAZY7AN\1[1]
- <LS_APPDATA>\Microsoft\Windows Media\9.0\WMSDKNS.XML.bak
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\darahammoPH[1].dll
- %WINDIR%\msagent\chars\darahammoPH.dll
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\2VAZY7AN\1[1]
- <LS_APPDATA>\Microsoft\Windows Media\9.0\WMSDKNSD.XML
- <LS_APPDATA>\Microsoft\Windows Media\9.0\WMSDKNS.XML.bak
- 'wp#d':80
- 'www.in###ebster.com':80
- 'localhost':1035
- 'jo#####al.herobo.com':80
- wp#d/wpad.dat
- www.in###ebster.com/downloads/behfih/r3i5n444t5v5l46444w39444k4l444y3b4a4z5z3t3k4m454p4d4r4/1
- jo#####al.herobo.com/relase/darahammoPH.dll
- wp#d/wpad.dat?Ty######
- DNS ASK www.in###ebster.com
- DNS ASK wp#d
- DNS ASK jo#####al.herobo.com
- ClassName: 'Shell_TrayWnd' WindowName: ''