Техническая информация
- %PROGRAM_FILES%\mcitane.exe (загружен из сети Интернет)
- %WINDIR%\peamms.exe (загружен из сети Интернет)
- %WINDIR%\explorer.exe http://li########al.files.wordpress.com/2008/03/86.jpg
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\micsyssound[1].jpg
- %WINDIR%\tira.cmd
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\SL6TKFAX\tiracmd[1].jpg
- %WINDIR%\Setup_Explore.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\ULU3YH2D\setex[1].jpg
- %PROGRAM_FILES%\mcitane.exe
- %WINDIR%\tira.txt
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\0D6B6PI5\tira[1].jpg
- %WINDIR%\peamms.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\pegamail[1].jpg
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\ULU3YH2D\tiratxt[1].jpg
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\0D6B6PI5\86[1].jpg
- %WINDIR%\tira.exe
- 'localhost':1039
- 'li########al.files.wordpress.com':80
- 'localhost':1037
- 'www.ar#####spdf.hpg.com.br':80
- www.ar#####spdf.hpg.com.br/tiracmd.jpg
- www.ar#####spdf.hpg.com.br/micsyssound.jpg
- www.ar#####spdf.hpg.com.br/setex.jpg
- www.ar#####spdf.hpg.com.br/tiratxt.jpg
- www.ar#####spdf.hpg.com.br/pegamail.jpg
- www.ar#####spdf.hpg.com.br/tira.jpg
- li########al.files.wordpress.com/2008/03/86.jpg
- DNS ASK li########al.files.wordpress.com
- DNS ASK www.ar#####spdf.hpg.com.br
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: '' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''