Техническая информация
- <LS_APPDATA>\{G7KHPXXC-C9P6-IS0O-R89H-8KMKQJ5FVRLS}\czd48h6m.exe
- <LS_APPDATA>\{G7KHPXXC-C9P6-IS0O-R89H-8KMKQJ5FVRLS}\cjtble9uhcktb.exe
- <LS_APPDATA>\Temp\Ibridge.exe
- <LS_APPDATA>\{G7KHPXXC-C9P6-IS0O-R89H-8KMKQJ5FVRLS}\czd48h6m.exe (загружен из сети Интернет)
- <LS_APPDATA>\{G7KHPXXC-C9P6-IS0O-R89H-8KMKQJ5FVRLS}\cjtble9uhcktb.exe (загружен из сети Интернет)
- <SYSTEM32>\ipconfig.exe /renew
- <SYSTEM32>\ipconfig.exe /flushdns
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\distrc[1].png
- <LS_APPDATA>\{G7KHPXXC-C9P6-IS0O-R89H-8KMKQJ5FVRLS}\czd48h6m.exe
- <LS_APPDATA>\{G7KHPXXC-C9P6-IS0O-R89H-8KMKQJ5FVRLS}\cjtble9uhcktb.exe
- <LS_APPDATA>\Temp\Ibridge.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\tkilog[1].png
- 'di#####ad.freetzi.com':80
- 'dc###.4shared.com':80
- 'www.go###e.com.br':80
- dc###.4shared.com/download/o2XcU-br/distrc.png
- di#####ad.freetzi.com/membros.php
- dc###.4shared.com/download/_-1hpmtP/tkilog.png
- DNS ASK di#####ad.freetzi.com
- DNS ASK dc###.4shared.com
- DNS ASK www.go###e.com.br
- ClassName: 'Shell_TrayWnd' WindowName: ''