Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Windows Services' = '%WINDIR%\FrWall.exe'
- '<SYSTEM32>\taskkill.exe' -f -im ashMaiSv.exe -im mcvsftsn.exe -im Mcdetect.exe -im McTskshd.exe -im mcvsshld.exe -im McVSEscn.exe -im McShield.exe -im mcagent.exe -im oasclnt.exe -im nod32kui.exe
- MCAGENT.EXE
- ClassName: 'AVP.Tray' WindowName: ''
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\index[1].php
- C:\Arquivos de programas\Internet Explorer\6.5\IEXPLORE.EXE
- 'so####sa.web.br.com':80
- 'localhost':1038
- 'www.li###.de.login.txt':80
- so####sa.web.br.com/countdown/index.php?pa#####################
- www.li###.de.login.txt/
- DNS ASK so####sa.web.br.com
- DNS ASK www.li###.de.login.txt
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: '' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'VBMsoStdCmpMgr' WindowName: ''
- ClassName: 'TFFramesto' WindowName: ''
- ClassName: 'aswDispMainWndClass' WindowName: ''
- ClassName: 'ccAppWindow' WindowName: ''