Техническая информация
- %WINDIR%\lhto10.exe (загружен из сети Интернет)
- <SYSTEM32>\regsvr32.exe /s %WINDIR%\lhto9348.dll
- <SYSTEM32>\regsvr32.exe /s lhto9604.ocx
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\2VAZY7AN\cadastro[1].htm
- %WINDIR%\lhto9348.dll
- %WINDIR%\lhto10.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\YPORKZYZ\img3[1].jpg
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\galho[1].jpg
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\prime[1].jpg
- <SYSTEM32>\lhto9604.ocx
- %TEMP%\~DF9E99.tmp
- 'pr####011.cwsurf.de':80
- 'tr#####news.hdfree.in':80
- 'localhost':1036
- tr#####news.hdfree.in/users/img3.jpg
- tr#####news.hdfree.in/users/prime.jpg
- tr#####news.hdfree.in/users/galho.jpg
- pr####011.cwsurf.de/cadastro.php
- DNS ASK pr####011.cwsurf.de
- DNS ASK tr#####news.hdfree.in
- '<IP-адрес в локальной сети>':1037