Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'IExplorer' = '%WINDIR%\iexplorer.exe'
- [<HKCU>\Software\Microsoft\MessengerService]
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\kut[1].php
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\1[1].php
- %WINDIR%\iexplorer.exe
- 'www.og###thly.com':80
- 'do#####vis.12gbfree.com':80
- 'localhost':1036
- www.og###thly.com/upb/skins/kut.php
- do#####vis.12gbfree.com/listas/1.php
- DNS ASK www.og###thly.com
- DNS ASK do#####vis.12gbfree.com
- ClassName: '' WindowName: 'Gmail - Microsoft Internet Explorer'
- ClassName: '' WindowName: 'Bem-vindo ao Gmail - Windows Internet Explorer'
- ClassName: '' WindowName: 'Bem-vindo ao Gmail - Microsoft Internet Explorer'
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: '' WindowName: 'Gmail - Windows Internet Explorer'
- ClassName: '' WindowName: 'orkut - meus amigos - Microsoft Internet Explorer'
- ClassName: '' WindowName: 'orkut - in?cio - Windows Internet Explorer'
- ClassName: '' WindowName: 'orkut - in?cio - Microsoft Internet Explorer'
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: '' WindowName: 'orkut - meus amigos - Windows Internet Explorer'
- ClassName: '' WindowName: 'orkut - Efetuar login - Windows Internet Explorer'
- ClassName: '' WindowName: 'orkut - Efetuar login - Microsoft Internet Explorer'