Техническая информация
- %TEMP%\44.exe
- %TEMP%\gimmysmileys.exe
- %TEMP%\HttpGet.exe
- %TEMP%\44.exe (загружен из сети Интернет)
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\44[1].exe
- %WINDIR%\gimmy.txt
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\conditions[1].php
- %TEMP%\44.exe
- %TEMP%\HttpGet.exe
- %TEMP%\nsy2.tmp
- %TEMP%\gimmysmileys.exe
- %TEMP%\httpget.ini
- 'www.gi###cash.com':80
- 'localhost':1036
- '20#.#03.120.5':80
- www.gi###cash.com/conditions.php
- 20#.#03.120.5/xiao/44.exe
- DNS ASK www.gi###cash.com
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''