Техническая информация
- <SYSTEM32>\regsvr32.exe /s %WINDIR%\kuqe5389.dll
- <SYSTEM32>\regsvr32.exe /s <SYSTEM32>\kuqe5837.ocx
- %WINDIR%\kuqe5389.dll
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\ULU3YH2D\newaires[1].htm
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\0D6B6PI5\zmosz[1].jpg
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\nek2[1].jpg
- <SYSTEM32>\kuqe5837.ocx
- 'pr####.cwsurf.de':80
- 'la####0.hdfree.in':80
- 'localhost':1036
- la####0.hdfree.in/xpra/zmosz.jpg
- la####0.hdfree.in/xpra/nek2.jpg
- pr####.cwsurf.de/newaires.php
- DNS ASK pr####.cwsurf.de
- DNS ASK la####0.hdfree.in