Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Internet Explorer 7 Beta' = '"<SYSTEM32>\iesetup7.exe"'
- <SYSTEM32>\iesetup7.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\auagata[1].jpg
- %WINDIR%\updade.dll
- <SYSTEM32>\iesetup7.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\winlockdll[1].jpg
- %WINDIR%\winlockdll.dll
- 'sm##.##il.yahoo.com.br':25
- 'so#######ree.vila.bol.com.br':80
- 'localhost':1035
- so#######ree.vila.bol.com.br/jsumor/auagata.jpg
- so#######ree.vila.bol.com.br/util/winlockdll.jpg
- DNS ASK sm##.##il.yahoo.com.br
- DNS ASK so#######ree.vila.bol.com.br