Technical Information
- '%WINDIR%\gasxx.exe'
- '%ProgramFiles%\Internet Explorer\IEXPLORE.EXE' -nohome
- '%TEMP%\mp-GJC3Q.tmp\mp-QU19Q.tmp' /SL4 $30092 "<Full path to file>" 811989 430080
- %WINDIR%\unins000.dat
- %HOMEPATH%\Local Settings\<INETFILES>\Content.IE5\U98D4X8H\meiodia[1].zip
- %APPDATA%\proces.zip
- %WINDIR%\mp-NR9PD.tmp
- %TEMP%\mp-GJC3Q.tmp\mp-QU19Q.tmp
- %TEMP%\mp-32S8S.tmp\_shfoldr.dll
- %WINDIR%\mp-A3AE8.tmp
- from %WINDIR%\mp-NR9PD.tmp to %WINDIR%\gasxx.exe
- from %WINDIR%\mp-A3AE8.tmp to %WINDIR%\unins000.exe
- '10#.#79.193.5':80
- 'www.ne###oes.com.br':80
- 'localhost':1038
- http://10#.#79.193.5/~cutch537/hora/meiodia.zip
- http://www.ne###oes.com.br/
- DNS ASK www.ne###oes.com.br
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'IEFrame' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: '' WindowName: ''