Техническая информация
- '%TEMP%\Bfefbor.exe'
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- %TEMP%\Bfefbor.exe
- %TEMP%\tmpFA10.log
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\YPORKZYZ\css2[1].pdf
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\2VAZY7AN\checkip.dyndns[1]
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\checkip.dyndns[1]
- <SYSTEM32>\PerfStringBackup.TMP
- <SYSTEM32>\wbem\Performance\WmiApRpl.ini
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\css2[1].pdf
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\checkip.dyndns[1]
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\2VAZY7AN\css2[1].pdf
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\css2[1].pdf
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\YPORKZYZ\checkip.dyndns[1]
- 'bu####ssmoney.in':80
- 'wg###otech.net':80
- 'ch####p.dyndns.org':80
- http://bu####ssmoney.IN/css/css2.pdf via bu####ssmoney.in
- http://wg###otech.net/css/css2.pdf
- http://ch####p.dyndns.org/
- DNS ASK bu####ssmoney.in
- DNS ASK wg###otech.net
- DNS ASK ch####p.dyndns.org