Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Ati2vexx' = '%WINDIR%\diabolick\rndll.exe'
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\0D6B6PI5\timer[1].txt
- %WINDIR%\diabolick\tempo.txt
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\hosts[1].txt
- %WINDIR%\diabolick\hosts.txt
- <DRIVERS>\etc\hosts
- 'localhost':1038
- 'www.ba###ionta.com':80
- 'me###.#atahouse.com.br':80
- '76.##.213.90':80
- www.ba###ionta.com/timer.txt
- www.ba###ionta.com/hosts.txt
- me###.#atahouse.com.br/
- 76.##.213.90/zoom.php
- DNS ASK www.ba###ionta.com
- DNS ASK me###.#atahouse.com.br
- ClassName: 'Shell_TrayWnd' WindowName: ''