Техническая информация
- <SYSTEM32>\krnel386.exe (загружен из сети Интернет)
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\luluhta[1]
- <SYSTEM32>\url.bmp
- <SYSTEM32>\krnel386.exe
- <SYSTEM32>\libeay32.dll
- <SYSTEM32>\ssleay32.dll
- <SYSTEM32>\send.exe
- 'at########ogerenciadorfinaceiro.com':80
- 'www.vi###log.com':80
- 'co#####comomundo.com':80
- 'localhost':1039
- at########ogerenciadorfinaceiro.com/send.exe
- at########ogerenciadorfinaceiro.com/url.bmp
- at########ogerenciadorfinaceiro.com/wFenrir.exe
- at########ogerenciadorfinaceiro.com/libeay32.dll
- at########ogerenciadorfinaceiro.com/ssleay32.dll
- www.vi###log.com/luluhta
- co#####comomundo.com/conta.php
- DNS ASK www.vi###log.com
- DNS ASK at########ogerenciadorfinaceiro.com
- DNS ASK co#####comomundo.com
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'IEFrame' WindowName: ''
- ClassName: '' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''