Техническая информация
- %TEMP%\csleketpo.exe
- %WINDIR%\dysekill.exe
- %TEMP%\lsooenghdiy.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\liulanruanjian.go.8866[1]
- <SYSTEM32>\sokehidike.iedy
- %TEMP%\csleketpo.exe
- %TEMP%\lsooenghdiy.exe
- %TEMP%\sokeyoskej.ini
- %WINDIR%\dysekill.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\liulanruanjian.go.8866[1]
- 'li######anjian.go.8866.org':80
- li######anjian.go.8866.org/
- DNS ASK li######anjian.go.8866.org