Техническая информация
- %HOMEPATH%\Start Menu\Programs\Startup\windows.lnk
- %HOMEPATH%\Start Menu\cmd.exe
- ecmd.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\2VAZY7AN\Post[1].Php
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\YPORKZYZ\ips8[1].asp
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\Postyc[1].Php
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\sudu[1]
- %HOMEPATH%\Start Menu\cmd.exe
- %HOMEPATH%\Start Menu\good.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\Tip[1].Php
- 'www.ip##8.com':80
- 'www.su#u.cn':80
- '19#.#92.153.254':80
- www.ip##8.com/ips8.asp?ip##########
- 19#.#92.153.254//Api/163/Postyc.Php?Us##################
- 19#.#92.153.254//Post/Post_AliPay.Php?Us####################################################################################
- 19#.#92.153.254//Api/163/Post.Php?Us#####################################
- 19#.#92.153.254//Inc/Tip.Php?Us##################
- www.su#u.cn/
- www.ip##8.com/ip2city.asp
- DNS ASK www.ip##8.com
- DNS ASK www.su#u.cn
- '<IP-адрес в локальной сети>':1037
- '<IP-адрес в локальной сети>':1036