Техническая информация
- "%TEMP%\9158chat_409200.exe" (загружен из сети Интернет)
- %WINDIR%\explorer.exe http://mo#g.in/ad.html?wx##
- %WINDIR%\explorer.exe http://mo#g.in/ad.html?wc###
- %WINDIR%\explorer.exe http://mo#g.in/ad.html?wi#
- <SYSTEM32>\wscript.exe ""%TEMP%\b.vbe""
- %WINDIR%\explorer.exe http://mo#g.in/ad.html?ta
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\0D6B6PI5\ad[2].html
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\ULU3YH2D\ad[1].html
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\SL6TKFAX\ad[1].html
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\0D6B6PI5\ad[1].html
- %TEMP%\b.vbe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\9158chat_409200[1].exe
- %TEMP%\9158chat_409200.exe
- %TEMP%\b.vbe
- 'localhost':1040
- 'mo#g.in':80
- 'do####ad21.subo.me':80
- 'localhost':1035
- 'w.##a.nl':9
- mo#g.in/ad.html?wx##
- mo#g.in/ad.html?wc###
- mo#g.in/ad.html?ta
- do####ad21.subo.me/9158/9158chat_409200.exe
- mo#g.in/ad.html?wi#
- DNS ASK mo#g.in
- DNS ASK do####ad21.subo.me
- DNS ASK w.##a.nl
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: '' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''