Техническая информация
- <SYSTEM32>\svchost.exe
- <SYSTEM32>\cmd.exe /c """%TEMP%\fsg.bat"" "
- %TEMP%\4296.ad4196
- %TEMP%\9343.tt9320
- %TEMP%\9203.ad9103
- %TEMP%\4281.tt4258
- %TEMP%\9359.ad9259
- %TEMP%\9468.tt9445
- %TEMP%\9484.ad9384
- %TEMP%\4406.tt4383
- %TEMP%\4421.ad4321
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\install[1].asp
- %TEMP%\7296.tt7273
- <DRIVERS>\pcidump.txt
- %TEMP%\fsg.bat
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\0D6B6PI5\baidu[1].txt
- %TEMP%\4125.ad4025
- %TEMP%\9171.tt9148
- %TEMP%\8375.ad8275
- %TEMP%\4109.tt4086
- %TEMP%\9359.ad9259
- %TEMP%\4296.ad4196
- %TEMP%\9484.ad9384
- %TEMP%\4421.ad4321
- %TEMP%\9203.ad9103
- <DRIVERS>\pcidump.sys
- %TEMP%\fsg.bat
- %TEMP%\4125.ad4025
- %TEMP%\8375.ad8275
- 'go####.googlee10.cn':80
- 'localhost':1035
- go####.googlee10.cn/baidu.txt
- go####.googlee10.cn/install.asp?u=######################
- DNS ASK go####.googlee10.cn