Техническая информация
- %TEMP%\heneng.exe
- <SYSTEM32>\gzip.dll
- %TEMP%\heneng.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\2VAZY7AN\ver[1].asp
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\ver[1].asp
- %TEMP%\nsy2.tmp\inetc.dll
- %TEMP%\nsy2.tmp\System.dll
- %TEMP%\nsy2.tmp\xconfigx.ini
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\5[1].xml
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\ver[1].asp
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\2VAZY7AN\ver[1].asp
- %TEMP%\nsy2.tmp\xconfigx.ini
- %TEMP%\nsy2.tmp\inetc.dll
- %TEMP%\nsy2.tmp\System.dll
- 'www.1c#t.cn':80
- 'www.kk##56.com':80
- www.1c#t.cn/lb/ali/ver.asp?mk##################
- www.kk##56.com/5.xml
- DNS ASK www.1c#t.cn
- DNS ASK www.pp##34.net
- DNS ASK www.kk##56.com
- ClassName: 'Shell_TrayWnd' WindowName: ''