Техническая информация
- %HOMEPATH%\cfzap.exe
- %HOMEPATH%\bfzap.exe
- %HOMEPATH%\afzap.exe
- <SYSTEM32>\svchost.exe
- <SYSTEM32>\cmd.exe /c """%HOMEPATH%\a.bat"" "
- <SYSTEM32>\ntvdm.exe -f -i1
- <SYSTEM32>\tasklist.exe
- firefox.exe
- iexplore.exe
- YahooMessenger.exe
- msnmsgr.exe
- ICQ.exe
- ClassName: 'SkinuxWindow' WindowName: 'MySpaceIM with Skype'
- %WINDIR%\Temp\scs1.tmp
- %WINDIR%\Temp\scs2.tmp
- %HOMEPATH%\a.bat
- %HOMEPATH%\hiuloim.exe
- %HOMEPATH%\afzap.exe
- %HOMEPATH%\bfzap.exe
- %HOMEPATH%\cfzap.exe
- %HOMEPATH%\hiuloim.exe
- %HOMEPATH%\bfzap.exe
- %HOMEPATH%\afzap.exe
- %WINDIR%\Temp\scs1.tmp
- %WINDIR%\Temp\scs2.tmp
- 'ma####watchmbee.com':80
- ma####watchmbee.com/huyabusa.php?in##############################################################################################################
- DNS ASK ma####watchmbee.com
- DNS ASK re##en.com
- DNS ASK ph###bucket.com
- ClassName: 'ConsoleWindowClass' WindowName: 'ntvdm-afc.b00.390001'