Техническая информация
- %APPDATA%\todxo.exe %TEMP%\biemn0bveNa1XvaxsUo9.exe
- %TEMP%\vHvj3WAsY1mcPFeThCaG.exe
- %TEMP%\biemn0bveNa1XvaxsUo9.exe
- ICQ.exe
- %APPDATA%\todxo.exe
- %TEMP%\USER-4BB09A9C02
- %TEMP%\biemn0bveNa1XvaxsUo9.exe
- %TEMP%\vHvj3WAsY1mcPFeThCaG.exe
- %APPDATA%\todxo.exe
- %TEMP%\biemn0bveNa1XvaxsUo9.exe
- 'ba######li.lybertevens.com':80
- 'au######on.whatismyip.com':80
- ba######li.lybertevens.com/index.php?ac#########################################################
- au######on.whatismyip.com/n09230945.asp
- DNS ASK ba######li.lybertevens.com
- DNS ASK au######on.whatismyip.com
- '<IP-адрес в локальной сети>':1035
- ClassName: 'Shell_TrayWnd' WindowName: ''