Техническая информация
- <SYSTEM32>\dll2.exe (загружен из сети Интернет)
- <SYSTEM32>\javasun2.exe (загружен из сети Интернет)
- <SYSTEM32>\kill.bat (загружен из сети Интернет)
- <SYSTEM32>\controll2.exe (загружен из сети Интернет)
- %WINDIR%\explorer.exe http://vo####ds.ig.com.br/imgcartao/cartoes/13/c13_amor_inabalavel.swf
- <SYSTEM32>\dll2.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\SL6TKFAX\auto[1].jpg
- <SYSTEM32>\javasun2.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\fisico[1].jpg
- <SYSTEM32>\controll2.exe
- <SYSTEM32>\kill.bat
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\anti[1].bat
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\ULU3YH2D\junto[1].jpg
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\0D6B6PI5\c13_amor_inabalavel[1].swf
- 'vo####ds.ig.com.br':80
- 'www.gl#####wss.hpg.com.br':80
- 'www.au#####vres.hpg.com.br':80
- 'localhost':1034
- 'vi##.####mesagens10.pochta.ru':80
- 'localhost':1037
- www.au#####vres.hpg.com.br/auto.jpg
- www.au#####vres.hpg.com.br/fisico.jpg
- www.gl#####wss.hpg.com.br/junto.jpg
- vi##.####mesagens10.pochta.ru/anti.bat
- vo####ds.ig.com.br/imgcartao/cartoes/13/c13_amor_inabalavel.swf
- DNS ASK www.gl#####wss.hpg.com.br
- DNS ASK www.au#####vres.hpg.com.br
- DNS ASK vi##.####mesagens10.pochta.ru
- DNS ASK vo####ds.ig.com.br
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: '' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''