Техническая информация
- <SYSTEM32>\regsvr32.exe /s %WINDIR%\fbmt3802.dll
- <SYSTEM32>\regsvr32.exe /s <SYSTEM32>\fbmt7810.ocx
- <SYSTEM32>\fbmt7810.ocx
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\ULU3YH2D\index[1].htm
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\0D6B6PI5\palmito[1].jpg
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\mamao[1].jpg
- %WINDIR%\fbmt3802.dll
- 'go####ls.cwsurf.de':80
- 'gs####2.hdfree.in':80
- gs####2.hdfree.in/merlin/palmito.jpg
- gs####2.hdfree.in/merlin/mamao.jpg
- go####ls.cwsurf.de/index.php
- DNS ASK go####ls.cwsurf.de
- DNS ASK gs####2.hdfree.in