Техническая информация
- <SYSTEM32>\ExtExport.exe (загружен из сети Интернет)
- <SYSTEM32>\borlndmm.com (загружен из сети Интернет)
- <SYSTEM32>\ssc.exe (загружен из сети Интернет)
- <SYSTEM32>\Winlogoms.exe (загружен из сети Интернет)
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\borlndmm[1]
- <SYSTEM32>\expressos.cfg
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\SL6TKFAX\expressos[1]
- <SYSTEM32>\borlndmm.com
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\0D6B6PI5\auto[1]
- <SYSTEM32>\borlndmm.dll
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\0D6B6PI5\logins[1].gif
- <SYSTEM32>\ssc.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\mataAVs[1]
- <SYSTEM32>\ExtExport.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\ULU3YH2D\avthekiller[1]
- <SYSTEM32>\Winlogoms.exe
- 'vi#######as.acreunagoias.com.br':80
- 'localhost':1038
- vi#######as.acreunagoias.com.br/images/expressos
- vi#######as.acreunagoias.com.br/images/borlndmm
- vi#######as.acreunagoias.com.br/images/auto
- vi#######as.acreunagoias.com.br/images/mataAVs
- vi#######as.acreunagoias.com.br/images/logins.gif
- vi#######as.acreunagoias.com.br/images/avthekiller
- DNS ASK vi#######as.acreunagoias.com.br