Техническая информация
- <SYSTEM32>\RSend.exe (загружен из сети Интернет)
- <SYSTEM32>\svchosts.exe (загружен из сети Интернет)
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\0D6B6PI5\RSend[1].jpg
- <SYSTEM32>\RSend.exe
- <SYSTEM32>\svchosts.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\0,,7188,00[1].html
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\svchosts[1].txt
- 'www.re######amento7.xpg.com.br':80
- 'pr#####.pr.funpic.de':80
- 'eg#.#lobo.com':80
- 'localhost':1037
- 'localhost':1038
- pr#####.pr.funpic.de/RSend.jpg
- www.re######amento7.xpg.com.br/svchosts.txt
- eg#.#lobo.com/Entretenimento/Paparazzo/0,,7188,00.html
- DNS ASK pr#####.pr.funpic.de
- DNS ASK www.re######amento7.xpg.com.br
- DNS ASK eg#.#lobo.com
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'IEFrame' WindowName: ''
- ClassName: '' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''