Техническая информация
- <SYSTEM32>\blocker.exe (загружен из сети Интернет)
- <SYSTEM32>\blocker.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\ULU3YH2D\gravaInfo[1].asp
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\0D6B6PI5\b3[1].jpg
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\b1[1].jpg
- <SYSTEM32>\MsBlocker.dll
- 'er###004.com':80
- '72.##.206.103':80
- 'localhost':1037
- er###004.com/gravaInfo.asp?na#####################
- 72.##.206.103/arquivos/b3.jpg
- 72.##.206.103/arquivos/b1.jpg
- DNS ASK er###004.com
- ClassName: 'Indicator' WindowName: ''