Техническая информация
- <SYSTEM32>\killbat.bat (загружен из сети Интернет)
- <SYSTEM32>\msnngr.exe (загружен из сети Интернет)
- <SYSTEM32>\iexplore7.exe (загружен из сети Интернет)
- %WINDIR%\explorer.exe http://ti##url.com/ykyfkse
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\0D6B6PI5\ykyfkse[1]
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\ULU3YH2D\subway[1].jpg
- <SYSTEM32>\killbat.bat
- <SYSTEM32>\msnngr.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\fflash[1].jpg
- <SYSTEM32>\iexplore7.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\0D6B6PI5\msnngr[1].jpg
- 'localhost':1037
- 'ti##url.com':80
- 'localhost':1034
- 'ca#####ss.hpg.ig.com.br':80
- ti##url.com/ykyfkse
- ca#####ss.hpg.ig.com.br/subway.jpg
- ca#####ss.hpg.ig.com.br/fflash.jpg
- ca#####ss.hpg.ig.com.br/msnngr.jpg
- DNS ASK ti##url.com
- DNS ASK ca#####ss.hpg.ig.com.br
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: '' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''