Техническая информация
- <SYSTEM32>\dxdlreg.exe <Полный путь к вирусу>
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\fasko11[1]
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\page[1].html
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\2VAZY7AN\page[2].html
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\page[2].html
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\YPORKZYZ\space73[1]
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\YPORKZYZ\matt1977[1]
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\solarsite[1]
- <SYSTEM32>\dxdlreg.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\page[1].html
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\2VAZY7AN\page[1].html
- %WINDIR%\Web Download\index.html
- %WINDIR%\Web Download\index.html
- 'www.ze##url.com':80
- 'www.fr###ebtown.com':80
- www.fr###ebtown.com/fasko11/page.html
- www.fr###ebtown.com/fasko11
- www.fr###ebtown.com/space73/page.html
- www.fr###ebtown.com/space73
- www.fr###ebtown.com/matt1977/page.html
- www.fr###ebtown.com/solarsite/page.html
- www.fr###ebtown.com/solarsite
- www.fr###ebtown.com/matt1977
- www.ze##url.com/space73/page.html
- DNS ASK www.ze##url.com
- DNS ASK www.fr###ebtown.com