Техническая информация
- %HOMEPATH%\My Documents\Downloads\BergmanIQ.exe (загружен из сети Интернет)
- %HOMEPATH%\My Documents\Downloads\ButterscotchInstaller.exe (загружен из сети Интернет)
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\0D6B6PI5\v2[1].html
- <Текущая директория>\哘脛Ȇ
- %HOMEPATH%\My Documents\Downloads\BergmanIQ.exe
- %HOMEPATH%\My Documents\Downloads\ButterscotchInstaller.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\urm48[1].php
- %TEMP%\ BergmanIQ.exe
- %TEMP%\ aaaaa3.exe
- %APPDATA%\GetRightToGo\ BergmanIQ.data0
- %APPDATA%\GetRightToGo\ BergmanIQ.data
- %APPDATA%\GetRightToGo\ BergmanIQ.data0
- %APPDATA%\GetRightToGo\ BergmanIQ.data
- %APPDATA%\GetRightToGo\ BergmanIQ.d000
- 'www.tu##ws.com':80
- 'uk##.tucows.com':80
- 'localhost':1037
- 'localhost':1035
- '46.##8.225.32':80
- www.tu##ws.com/toolbar/butterscotch/update/ButterscotchInstaller.exe
- uk##.tucows.com/files5/BergmanIQ.exe
- 46.##8.225.32/urm48/urm48.php?id##
- www.tu##ws.com/v2.html?co#########################################
- DNS ASK uk##.tucows.com
- DNS ASK www.tu##ws.com
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''