Техническая информация
- '%ProgramFiles%\VASynr\b662e49.exe'
- <LS_APPDATA>\DOydGMr\sDyWHCo.dll
- <LS_APPDATA>\DOydGMr\WCbqkhoI.dll
- C:\YRCtNT.txt
- %WINDIR%\OVNAnqJ\xKPCrEI.dll
- %WINDIR%\qPepefc.dll
- %ProgramFiles%\VASynr\b662e49.exe
- %WINDIR%\FADbxDWG.dll
- %WINDIR%\OVNAnqJ\xKPCrEI.dll
- <LS_APPDATA>\DOydGMr\sDyWHCo.dll
- %WINDIR%\qPepefc.dll
- %WINDIR%\FADbxDWG.dll
- %WINDIR%\OVNAnqJ\xKPCrEI.dll
- 'ts#.#xwan.com':80
- 'dl#.#xwan.com':80
- 'www.ip##8.com':80
- '<L###LNET>.0.2':80
- 'ip.#atr.cn':80
- 'gc.#b51.com':80
- 'cf#.##pinwan.com':80
- 'ud#.#xwan.com':80
- 'bk.##7wan.com':80
- 'us###.qzone.qq.com':80
- 'r.###gyou.com':80
- http://gc.#b51.com/index/getcfg?id######
- http://us###.qzone.qq.com/fcg-bin/cgi_get_portrait.fcg?ui############
- http://ip.#atr.cn/
- http://www.ip##8.com/
- http://cf#.##pinwan.com/index/getcfg?id######
- http://ud#.#xwan.com/index/getcfg?id######
- http://r.###gyou.com/fcg-bin/cgi_get_portrait.fcg?ui############
- http://bk.##7wan.com/index/getcfg?id######
- http:///index/eventup.html via <L###LNET>.0.2
- DNS ASK dl#.#xwan.com
- DNS ASK gc.#b51.com
- DNS ASK ts#.#xwan.com
- DNS ASK ip.#atr.cn
- DNS ASK www.ip##8.com
- DNS ASK bk.##7wan.com
- DNS ASK cf#.##pinwan.com
- DNS ASK ud#.#xwan.com
- DNS ASK us###.qzone.qq.com
- DNS ASK r.###gyou.com
- '25#.#55.255.255':6880
- ClassName: 'TApplication' WindowName: 'eyoorun'