Техническая информация
- '<SYSTEM32>\regsvr32.exe' /s %WINDIR%\bvat7721.dll
- '<SYSTEM32>\regsvr32.exe' /s bvat6204.ocx
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\prime[1].jpg
- %WINDIR%\bvat7721.dll
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\2VAZY7AN\cadastro[1].htm
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\galho[1].jpg
- <SYSTEM32>\bvat6204.ocx
- %TEMP%\~DF6460.tmp
- 'pr####011.cwsurf.de':80
- 'tr#####news.hdfree.in':80
- 'localhost':1037
- tr#####news.hdfree.in/users/prime.jpg
- tr#####news.hdfree.in/users/galho.jpg
- pr####011.cwsurf.de/cadastro.php
- DNS ASK pr####011.cwsurf.de
- DNS ASK tr#####news.hdfree.in