Техническая информация
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\ULU3YH2D\Beholder[2]
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\0D6B6PI5\hookDll[2].dll
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\Beholder[2]
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\0D6B6PI5\hookDll[3].dll
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\Beholder[3]
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\SL6TKFAX\hookDll[2].dll
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\0D6B6PI5\hookDll[1].dll
- <SYSTEM32>\Beholder.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\Beholder[1]
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\SL6TKFAX\hookDll[1].dll
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\ULU3YH2D\Beholder[1]
- <SYSTEM32>\hookDll.dll
- <SYSTEM32>\hookDll.dll
- <SYSTEM32>\Beholder.exe
- 'me#####1975.qipim.ru':80
- 'me#####1971.qipim.ru':80
- 'me#####1973.qipim.ru':80
- 'localhost':1036
- 'me#####1974.qipim.ru':80
- 'me#####1972.qipim.ru':80
- me#####1971.qipim.ru/Beholder
- me#####1975.qipim.ru/hookDll.dll
- me#####1971.qipim.ru/hookDll.dll
- me#####1973.qipim.ru/hookDll.dll
- me#####1973.qipim.ru/Beholder
- me#####1974.qipim.ru/hookDll.dll
- me#####1974.qipim.ru/Beholder
- me#####1972.qipim.ru/Beholder
- me#####1975.qipim.ru/Beholder
- me#####1972.qipim.ru/hookDll.dll
- DNS ASK me#####1971.qipim.ru
- DNS ASK me#####1973.qipim.ru
- DNS ASK me#####1975.qipim.ru
- DNS ASK me#####1974.qipim.ru
- DNS ASK me#####1972.qipim.ru