Техническая информация
- '%ProgramFiles%\Internet Explorer\IEXPLORE.EXE' -nohome
- '<SYSTEM32>\cmd.exe' /c cmd.exe /c ren <SYSTEM32>\hahaha2 msnmsgs.exe
- '<SYSTEM32>\cmd.exe' /c ren <SYSTEM32>\hahaha2 msnmsgs.exe
- '<SYSTEM32>\cmd.exe' /c cmd.exe /c echo olha > %TEMP%\blolor2.txt
- '<SYSTEM32>\cmd.exe' /c echo olha
- '<SYSTEM32>\cmd.exe' /c start http://www.vo###rds.com.br
- <SYSTEM32>\hahaha2
- <SYSTEM32>\hahaha3
- %TEMP%\blolor2.txt
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\voxcards.com[1]
- <SYSTEM32>\hahaha2 в <SYSTEM32>\msnmsgs.exe
- '66.#52.1.18':80
- 'bo#####ebh.pop.com.br':80
- 'localhost':1041
- 'localhost':1038
- 'www.vo###rds.com.br':80
- http://bo#####ebh.pop.com.br/agenda/imagens/imagem_enviada_encontro_aracuai_menu_2.jpg
- http://bo#####ebh.pop.com.br/agenda/imagens/imagem_enviada_akon_agenda_principal.jpg
- http://www.vo###rds.com.br/
- http://66.#52.1.18/up/systemX86.txt
- DNS ASK bo#####ebh.pop.com.br
- DNS ASK www.vo###rds.com.br
- ClassName: 'IEFrame' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'ConsoleWindowClass' WindowName: 'MicrosoftOptimizationer'
- ClassName: '' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''