Техническая информация
- %WINDIR%\Help\pigsys.exe (загружен из сети Интернет)
- <SYSTEM32>\cmd.exe /c %WINDIR%\1.bat
- <SYSTEM32>\cmd.exe /c 1.bat
- Библиотека-обработчик для всех процессов: %WINDIR%\help\4E3B416FA842.dll
- %WINDIR%\1.bat
- %WINDIR%\Help\47C617A72EC1.dll
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\gm[1].exe
- %WINDIR%\Help\pigsys.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\0D6B6PI5\self[1].exe
- %WINDIR%\Help\4E3B416FA842.dll
- <Текущая директория>\1.bat
- C:\1.hiv
- %WINDIR%\Help\4E3B416FA842.exe
- C:\2.hiv
- %WINDIR%\Help\47C617A72EC1.dll
- %WINDIR%\Help\4E3B416FA842.exe
- %WINDIR%\Help\4E3B416FA842.dll
- %WINDIR%\Help\pigsys.exe
- C:\2.hiv
- C:\1.hiv
- 'www.dy###agon.co.kr':80
- 'cc##.eicp.net':80
- 'localhost':1037
- www.dy###agon.co.kr/gon/self.exe
- www.dy###agon.co.kr/gon/gm.exe
- DNS ASK www.dy###agon.co.kr
- DNS ASK cc##.eicp.net
- ClassName: 'Shell_TrayWnd' WindowName: ''