Техническая информация
- [<HKLM>\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon] 'Shell' = 'Explorer.exe %WINDIR%\System_Idle.exe'
- ClassName: 'FileMonClass', WindowName: ''
- ClassName: 'OLLYDBG', WindowName: ''
- %WINDIR%\sprite104.swf
- %WINDIR%\prof.ini
- %WINDIR%\system_idle.exe
- %WINDIR%\sobe2.txt
- %WINDIR%\serviceprofiles\networkservice\appdata\locallow\microsoft\cryptneturlcache\metadata\f0accf77cdcbff39f6191887f6d2d357
- %WINDIR%\serviceprofiles\networkservice\appdata\locallow\microsoft\cryptneturlcache\content\f0accf77cdcbff39f6191887f6d2d357
- http://www.no####aslocales.org/jere/noticias/gets.exe.bak
- http://www.microsoft.com/pki/certs/MicRooCerAut_2010-06-23.crt
- http://www.it###andyou.com/media/pets.php
- http://www.le##ion.de/trainer/pets.php
- http://www.lu#####paceibiza.com/pets.php
- DNS ASK it###andyou.com
- DNS ASK le##ion.de
- DNS ASK lu#####paceibiza.com
- DNS ASK no####aslocales.org
- DNS ASK pi#####exercisess.com
- ClassName: '18467-41' WindowName: ''
- ClassName: 'NDDEAgnt' WindowName: 'NetDDE Agent'
- ClassName: 'mozillawindowclass' WindowName: ''
- ClassName: 'mozilladropshadowwindowclass' WindowName: ''
- ClassName: 'tabwindowclass' WindowName: ''
- ClassName: 'shell docobject view' WindowName: ''
- ClassName: 'IEFrame' WindowName: ''
- ClassName: 'Frame Tab' WindowName: ''
- ClassName: 'Internet Explorer_Server' WindowName: ''