Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'rb' = 'c:\rxb\rb.exe'
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] '' = ''
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'rr' = 'c:\rxb\rr.exe'
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'rn' = 'c:\rxb\rn.exe'
- C:\rxb\rn.jpg
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\ULU3YH2D\rtb[1].html
- C:\rxb\rb.jpg
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\rtr[1].html
- C:\rxb\rr.jpg
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\0D6B6PI5\rtn[1].html
- 'www.as#####we.hpg.ig.com.br':80
- 'localhost':1038
- www.as#####we.hpg.ig.com.br/rtb.html
- www.as#####we.hpg.ig.com.br/rtn.html
- www.as#####we.hpg.ig.com.br/rtr.html
- DNS ASK www.as#####we.hpg.ig.com.br