Техническая информация
- "%TEMP%\a.exe" (загружен из сети Интернет)
- %TEMP%\a.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\u[1].exe
- %TEMP%\utt3.tmp.new
- %TEMP%\utt2.tmp.new
- %APPDATA%\Microsoft\Crypto\RSA\S-1-5-21-1275210071-117609710-1801674531-500\a18ca4003deb042bbee7a40f15e1970b_ffcb838e-6d3b-4e44-a259-8ac8f5c94c4f
- %APPDATA%\Microsoft\Protect\S-1-5-21-1275210071-117609710-1801674531-500\eb99fd05-2040-41a8-be48-e43da22391df
- %TEMP%\utt1.tmp.new
- %APPDATA%\uTorrent\settings.dat.new
- %TEMP%\utt3.tmp
- %TEMP%\utt1.tmp
- 'is###hniaz.com':80
- 'do#####d.utorrent.com':80
- 'up####.utorrent.com':80
- 'localhost':1035
- 'll.#####oad3.utorrent.com':80
- is###hniaz.com/img/u.exe
- do#####d.utorrent.com/offers/ut_conduit-20110119.bmp
- up####.utorrent.com/installstats.php?v=##########################################################
- ll.#####oad3.utorrent.com/offers/Zenith_InstallScreen2.bmp
- up####.utorrent.com/installoffer.php?h=###################################################################################################
- DNS ASK is###hniaz.com
- DNS ASK do#####d.utorrent.com
- DNS ASK ll.#####oad3.utorrent.com
- DNS ASK up####.utorrent.com
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: '?Torrent4823DF041B09' WindowName: ''