Техническая информация
- firefox.exe
- %WINDIR%\otalm.txt
- %WINDIR%\wmsyspr9.obj
- %WINDIR%\wmsyspr9.obj
- '<LOCALNET>.47.45':18692
- '10#.#5.87.107':7777
- 'localhost':49181
- http://li##.##guyu.com:6666/4c328d2b8aa1a31f69f8eb7d49a2a0e0.txt via li##.58guyu.com
- http://61.###.11.53:6666/ad50872bf2fab8ad8381b8a74eefee9f.exe via 61.##0.11.53
- http://12#.##.57.162:7894/0a002700002f.txt via 12#.#5.57.162
- DNS ASK 3m####x0.58guyu.com
- DNS ASK li##.58guyu.com
- '<LOCALNET>.47.255':18692
- '12#.#5.57.162':7898
- '<SYSTEM32>\rundll32.exe' <SYSTEM32>\FirewallControlPanel.dll,ShowNotificationDialog /configure /ETOnly 0 /OnProfiles 6 /OtherAllowed 0 /OtherBlocked 0 /OtherEdgeAllowed 0 /NewBlocked 4 "<Полный путь к файлу>"
- '%ProgramFiles(x86)%\mozilla firefox\firefox.exe'