Техническая информация
- <LS_APPDATA>\{0IV7OOR8-G6P8-MMAV-LOAG-MOBXEBWYO03D}\ss3zj5nf.exe
- <LS_APPDATA>\{0IV7OOR8-G6P8-MMAV-LOAG-MOBXEBWYO03D}\nf5i6cfqo4064.exe
- <LS_APPDATA>\Temp\Libzips.exe
- <LS_APPDATA>\{0IV7OOR8-G6P8-MMAV-LOAG-MOBXEBWYO03D}\ss3zj5nf.exe (загружен из сети Интернет)
- <LS_APPDATA>\{0IV7OOR8-G6P8-MMAV-LOAG-MOBXEBWYO03D}\nf5i6cfqo4064.exe (загружен из сети Интернет)
- <SYSTEM32>\ipconfig.exe /renew
- <SYSTEM32>\ipconfig.exe /flushdns
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\capric[1].mid
- <LS_APPDATA>\{0IV7OOR8-G6P8-MMAV-LOAG-MOBXEBWYO03D}\ss3zj5nf.exe
- <LS_APPDATA>\{0IV7OOR8-G6P8-MMAV-LOAG-MOBXEBWYO03D}\nf5i6cfqo4064.exe
- <LS_APPDATA>\Temp\Libzips.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\prjalfa[1].mid
- 'se######eubebo.noads.biz':80
- 'up####s.boxify.me':80
- 'www.go###e.com.br':80
- up####s.boxify.me/87563/capric.mid
- se######eubebo.noads.biz/membros.php
- up####s.boxify.me/87564/prjalfa.mid
- DNS ASK se######eubebo.noads.biz
- DNS ASK up####s.boxify.me
- DNS ASK www.go###e.com.br
- ClassName: 'Shell_TrayWnd' WindowName: ''