Техническая информация
- %TEMP%\b6g14g\services.exe
- %WINDIR%\.exe ===<Полный путь к вирусу>
- %TEMP%\b6g14g\services.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\dldr[1].txt
- %WINDIR%\wdmaud.drv
- %WINDIR%\.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\dldr[1].txt
- 'ji#####an.us7.hap02.com':80
- 'localhost':1036
- ji#####an.us7.hap02.com/dldr.txt
- DNS ASK ji#####an.us7.hap02.com