Техническая информация
- '%TEMP%\nsq2.tmp\90018_ailiao.exe'
- '%TEMP%\nsq2.tmp\90018_ailiao.exe' (загружен из сети Интернет)
- %PROGRAM_FILES%\kuplay\reply.htm
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\default[1].htm
- %TEMP%\nsq2.tmp\Inetc.dll
- %TEMP%\nsq2.tmp\setup_3038.exe
- %TEMP%\nsq2.tmp\90018_ailiao.exe
- %TEMP%\nsq2.tmp\NSISdl.dll
- %PROGRAM_FILES%\kuplay\їбІҐУ°Тф.url
- %TEMP%\nsq2.tmp\FindProcDLL.dll
- %TEMP%\nsq2.tmp\System.dll
- %PROGRAM_FILES%\kuplay\uninst.exe
- %HOMEPATH%\Start Menu\Programs\їбІҐУ°Тф\Uninstall.lnk
- %HOMEPATH%\Start Menu\Programs\їбІҐУ°Тф\Website.lnk
- 'wa##.xkwnz.com':80
- 'as#.#bzjh.com':80
- wa##.xkwnz.com/yinyuefm.txt
- wa##.xkwnz.com/ailiao.txt
- as#.#bzjh.com/default.php
- DNS ASK wa##.xkwnz.com
- DNS ASK as#.#bzjh.com
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'