Техническая информация
- '%TEMP%\Swt_.exe' -silent -SIMBP -SIMTP="?pid=594&cmpid=37927&plcmtid=551384&cveid=1359021" -cargo=3.1010000.00000
- '%TEMP%\Swt_.exe' (загружен из сети Интернет)
- %TEMP%\tmp0806d_.tmp
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\2VAZY7AN\download_tracker_v2[1].php
- %TEMP%\nsc2.tmp\Registry.dll
- %TEMP%\Swt_.exe
- %TEMP%\Swt_.tmp
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\download_tracker_v2[1].php
- %TEMP%\nsc2.tmp\inetc.dll
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\sweetim[1].exe
- %TEMP%\tmp0906s_.tmp
- %TEMP%\nsc2.tmp\Registry.dll
- %TEMP%\nsc2.tmp\inetc.dll
- %TEMP%\Swt_.tmp
- 'so####re.onekit.com':80
- so####re.onekit.com/download_tracker_v2.php?op##############################
- so####re.onekit.com/software/ofertas/sweetim/sweetim.exe
- so####re.onekit.com/download_tracker_v2.php?op############################
- DNS ASK so####re.onekit.com
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'