Техническая информация
- %WINDIR%\Microsoft.NET\Framework\v2.0.50727\vbc.exe
- [<HKCU>\Software\Microsoft\IdentityCRL]
- [<HKCU>\Software\Yahoo\Pager]
- [<HKCU>\Software\IMVU\password]
- [<HKCU>\Software\Microsoft\Windows Live Mail]
- [<HKCU>\Identities\{5518F2FB-DB74-45A3-BEC1-4575D8D9DC84}\Software\Microsoft\Internet Account Manager\Accounts]
- [<HKCU>\Software\Microsoft\Office\Outlook\OMI Account Manager\Accounts]
- [<HKCU>\Software\Microsoft\MSNMessenger]
- [<HKCU>\Identities\{5518F2FB-DB74-45A3-BEC1-4575D8D9DC84}\Software\Microsoft\Office\Outlook\OMI Account Manager\Accounts]
- %TEMP%\logmail.txt
- %TEMP%\logff.txt
- %TEMP%\logmail.txt
- %TEMP%\logff.txt
- %APPDATA%\Temp.exe
- <Полный путь к файлу> в %APPDATA%\Temp.exe
- 'my#p.ru':80
- 'wp#d':80
- 'sm##.gmail.com':587
- http://www.my#p.ru/en-EN/index.php via my#p.ru
- http://11#.#11.111.2/wpad.dat via wp#d
- DNS ASK www.my#p.ru
- DNS ASK wp#d
- DNS ASK sm##.gmail.com
- '%APPDATA%\Temp.exe'
- '%WINDIR%\Microsoft.NET\Framework\v2.0.50727\vbc.exe' /stext "%TEMP%\logmail.txt
- '%WINDIR%\Microsoft.NET\Framework\v2.0.50727\vbc.exe' /stext "%TEMP%\logff.txt