Техническая информация
- '%TEMP%\ww.exe' /stext %TEMP%\//w.txt
- '%PROGRAM_FILES%\Internet Explorer\IEXPLORE.EXE' http://si####rah.uboxi.com/YiiProje/hotel/index.php
- firefox.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\index[1].php
- C:\Documents
- %TEMP%\ww.exe
- 'si####rah.uboxi.com':80
- 'localhost':1036
- '21#.#39.32.20':80
- si####rah.uboxi.com/YiiProje/hotel/index.php
- DNS ASK si####rah.uboxi.com
- ClassName: 'MS_AutodialMonitor' WindowName: '(null)'
- ClassName: 'MS_WebcheckMonitor' WindowName: '(null)'
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: '' WindowName: '(null)'