Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Alterador' = '%WINDIR%\diabolick\alterador.exe'
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\0D6B6PI5\timer[1].txt
- %WINDIR%\diabolick\tempo.txt
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\hosts[1].txt
- %WINDIR%\diabolick\hosts.txt
- <DRIVERS>\etc\hosts
- 'localhost':1039
- 'co####centre.org':80
- 'me###.#atahouse.com.br':80
- 'www.go###tsrus.com':80
- co####centre.org/_subs/par/timer.txt
- co####centre.org/_subs/par/hosts.txt
- me###.#atahouse.com.br/
- www.go###tsrus.com/images/thumbs.php
- DNS ASK co####centre.org
- DNS ASK www.go###tsrus.com
- DNS ASK me###.#atahouse.com.br
- ClassName: 'Shell_TrayWnd' WindowName: ''