Техническая информация
- '<SYSTEM32>\cmd.exe' /c cleen.bat
- <Текущая директория>\cleen.bat
- %APPDATA%\Microsoft\Internet Explorer\brndlog.txt в %APPDATA%\Microsoft\Internet Explorer\brndlog.txt.id-6859381130_bingo@opensourcemail.org
- %APPDATA%\Mozilla\Firefox\Profiles\cwdgt0y8.default\sessionstore.bak в %APPDATA%\Mozilla\Firefox\Profiles\cwdgt0y8.default\sessionstore.bak.id-6859381130_bingo@opensourcemail.org
- %APPDATA%\Microsoft\Address Book\%USERNAME%.wab в %APPDATA%\Microsoft\Address Book\%USERNAME%.wab.id-6859381130_bingo@opensourcemail.org
- %APPDATA%\Microsoft\Internet Explorer\brndlog.bak в %APPDATA%\Microsoft\Internet Explorer\brndlog.bak.id-6859381130_bingo@opensourcemail.org
- 'vi####rome69.info':80
- http://vi####rome69.info/
- DNS ASK vi####rome69.info