Техническая информация
- %TEMP%\pumpercom.exe (загружен из сети Интернет)
- %TEMP%\nyancom.exe (загружен из сети Интернет)
- %TEMP%\handycom.exe (загружен из сети Интернет)
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\SL6TKFAX\3207376037c82427d556fb7b0[1].swf
- %TEMP%\pumpercom.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\ULU3YH2D\pumpercom[1].exe
- %TEMP%\nyan.mp3
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\Nyan+Cat+%5Boriginal%5D[1].mp3
- %TEMP%\Temp.swf
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\handycom[1].exe
- %TEMP%\prjkooc
- %TEMP%\aut1.tmp
- %TEMP%\nyancom.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\0D6B6PI5\nyancom[1].exe
- %TEMP%\handycom.exe
- %TEMP%\prjkooc
- %TEMP%\aut1.tmp
- 'www.im###cabin.com':80
- 'do######1350.mediafire.com':80
- '19#.#1.152.140':80
- '19#.#1.152.83':80
- 'do######1028.mediafire.com':80
- www.im###cabin.com/files/2011/11/08/3207376037c82427d556fb7b0.swf
- do######1350.mediafire.com/de9vgqfd3kgg/1797filwjnleqaw/Nyan+Cat+%5Boriginal%5D.mp3
- 19#.#1.152.140/94jgcip3a7vg/v5nnxvew27m16qk/pumpercom.exe
- 19#.#1.152.83/li4r09reyb3g/7rrs5j3lht44y5y/handycom.exe
- do######1028.mediafire.com/54059de8l0fg/3ip94v1suiwytqw/nyancom.exe
- DNS ASK www.im###cabin.com
- DNS ASK do######1350.mediafire.com
- DNS ASK do######1028.mediafire.com
- '<IP-адрес в локальной сети>':1036
- ClassName: 'Shell_TrayWnd' WindowName: ''