Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Internet Explorer\Extensions\{320AF880-6646-11D3-ABEE-C5DBF3571F49}] 'Exec' = 'http://www.1314la.net'
- %WINDIR%\3.exe
- <SYSTEM32>\cmd.exe /c ""<Текущая директория>\kill.bat""
- %WINDIR%\anifly01.ico
- %WINDIR%\anifly02.ico
- <Текущая директория>\kill.bat
- %WINDIR%\3.exe
- %WINDIR%\MSINET.OCX
- %WINDIR%\setupflag.log
- 'zh#####g.d68.zgsj.net':80
- 'localhost':1036
- zh#####g.d68.zgsj.net/qq/5588/get.asp?sy#######
- DNS ASK zh#####g.d68.zgsj.net
- ClassName: 'SysPager' WindowName: ''
- ClassName: 'ToolbarWindow32' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'TrayNotifyWnd' WindowName: ''