Техническая информация
- %WINDIR%\regedit.exe /s %WINDIR%\884AFEReg
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\0D6B6PI5\tradutor[1].rar
- %PROGRAM_FILES%\Internet Explorer\pdm2.dll
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\SL6TKFAX\tradutor[1].rar
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\ULU3YH2D\tradutor[1].rar
- %PROGRAM_FILES%\Internet Explorer\acpi.vxd
- %WINDIR%\884AFE.Reg
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\tradutor[1].rar
- %WINDIR%\system\<Имя вируса>.exe
- %PROGRAM_FILES%\Internet Explorer\acpi.vxd
- %WINDIR%\884AFE.Reg
- 'www.in####obress.net':80
- 'www.in########.dominiotemporario.com':80
- 'www.we###rvss.com':80
- 'www.we###rvss.net':80
- www.in####obress.net/zzz/tradutor.rar
- www.in########.dominiotemporario.com/zzz/tradutor.rar
- www.we###rvss.com/zzz/tradutor.rar
- www.we###rvss.net/zzz/tradutor.rar
- DNS ASK www.in####obress.net
- DNS ASK www.in########.dominiotemporario.com
- DNS ASK www.we###rvss.com
- DNS ASK www.we###rvss.net
- ClassName: 'RegEdit_RegEdit' WindowName: ''
- ClassName: 'BAE474D' WindowName: ''