Техническая информация
- %WINDIR%\system\system32.exe
- %WINDIR%\system\system.exe
- %WINDIR%\system\system32.exe (загружен из сети Интернет)
- %WINDIR%\system\system.exe (загружен из сети Интернет)
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\worm[1].jpg
- %WINDIR%\system\system32.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\oi[1].exe
- %WINDIR%\system\system.exe
- 'www.mo####eduction.com':80
- 'pr####.##u.livefilestore.com':80
- 'localhost':1035
- www.mo####eduction.com/worm.jpg
- pr####.##u.livefilestore.com/y1pvhnPij_Q6woimC5rJo98SkQiR17wbr9Pv3RBcRYvDX9dGDaqBqMc6_r65aVzPxr1j3DusjpoAL4/oi.exe
- DNS ASK www.mo####eduction.com
- DNS ASK pr####.##u.livefilestore.com
- ClassName: '' WindowName: 'asdfghjklqwertyuiop?{[xassdwcvz52315582147881224484512'