Техническая информация
- '%WINDIR%\RL\8MWQ6CUC7M8YWQ8.exe'
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\versaoloader[1].txt
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\red[1].html
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\YPORKZYZ\red2[1].html
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\2VAZY7AN\cf-hack[1]
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\amogamesbr[1]
- %WINDIR%\versao.txt
- %WINDIR%\list.txt
- %WINDIR%\name.txt
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\name[1].txt
- %WINDIR%\RL\8MWQ6CUC7M8YWQ8.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\2VAZY7AN\go[1].txt
- %WINDIR%\date.txt
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\date[1].txt
- 'am###mesbr.com':80
- 'www.rl####ers.com.br':80
- 'vo##fx.net':80
- 'localhost':1035
- 'ga####cus.com.br':80
- ga####cus.com.br/loader/versaoloader.txt
- vo##fx.net/red.html
- www.rl####ers.com.br/tag/cf-hack/
- am###mesbr.com/
- ga####cus.com.br/loader/date.txt
- ga####cus.com.br/loader/name.txt
- vo##fx.net/red2.html
- ga####cus.com.br/loader/go.txt
- DNS ASK am###mesbr.com
- DNS ASK www.rl####ers.com.br
- DNS ASK ga####cus.com.br
- DNS ASK vo##fx.net
- ClassName: 'MS_AutodialMonitor' WindowName: '(null)'
- ClassName: 'MS_WebcheckMonitor' WindowName: '(null)'
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: 'MS_WINHELP' WindowName: '(null)'