Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Microsoft Corporation' = '<SYSTEM32>\javaccpl.exe'
- %WINDIR%\atualizador.exe
- %WINDIR%\atualizador.exe (загружен из сети Интернет)
- %WINDIR%\lmhosts
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\atualizador[1].exe
- %WINDIR%\atualizador.exe
- <DRIVERS>\etc\lmhosts
- <SYSTEM32>\javaccpl.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\folder.will[1].gif
- %WINDIR%\hosts
- <DRIVERS>\etc\hosts
- 've#####r.dnsdojo.org':80
- '19#.#2.238.60':80
- 'localhost':1036
- '21#.#5.99.12':80
- ve#####r.dnsdojo.org/.../atualizador.exe
- 21#.#5.99.12/icons/folder.will.gif
- 19#.#2.238.60/env.php
- DNS ASK ve#####r.dnsdojo.org
- ClassName: 'MS_WINHELP' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''