Техническая информация
- '%APPDATA%\XGMiniDownloader\000045packer.exe' /minidownloader
- '<SYSTEM32>\xiazai.exe'
- '%APPDATA%\XGMiniDownloader\000045packer.exe' (загружен из сети Интернет)
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\2VAZY7AN\DPV[1]
- %APPDATA%\XGMiniDownloader\000045packer.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\DPV[1]
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\YPORKZYZ\DPV[1]
- <SYSTEM32>\download.log
- <SYSTEM32>\xiazai.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\123[1]
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\1[1].txt000045
- 'ga######.youxi.xunlei.com':80
- 'www.yi####ai-ali.com':80
- ga######.youxi.xunlei.com/DPV?gs#############################################################
- www.yi####ai-ali.com/123.exe?ti#############
- www.yi####ai-ali.com/1.txt000045?ti#############
- DNS ASK ga######.youxi.xunlei.com
- DNS ASK www.yi####ai-ali.com
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: 'EDIT' WindowName: '(null)'