Техническая информация
- %WINDIR%\dxdriver.sys
- %WINDIR%\dxsougou.dll
- %WINDIR%\svaserver.exe
- %WINDIR%\svbserver.exe
- %WINDIR%\svcserver.exe
- %WINDIR%\mytxt1.txt
- %WINDIR%\mytxt2.txt
- %WINDIR%\mytxt3.txt
- <Полный путь к файлу>
- из <Полный путь к файлу> в %WINDIR%\n24n31309b
- 'ip##.com':80
- 'ap#.###jian.1314hyx.com':8055
- http://www.ip##.com/
- http://ap#.#####an.1314hyx.com:8055/api/v1/listFollowWords via ap#.###jian.1314hyx.com
- http://ap#.#####an.1314hyx.com:8055/api/v1/listFollowExtra via ap#.###jian.1314hyx.com
- http://ap#.#####an.1314hyx.com:8055/api/v1/addPluginLog via ap#.###jian.1314hyx.com
- DNS ASK ip##.com
- DNS ASK ap#.###jian.1314hyx.com
- ClassName: 'Chrome_WidgetWin_1' WindowName: ''
- ClassName: 'IEFrame' WindowName: ''
- ClassName: 'WorkerW' WindowName: ''
- ClassName: 'ReBarWindow32' WindowName: ''
- ClassName: 'Address Band Root' WindowName: ''
- ClassName: 'Edit' WindowName: ''
- '%WINDIR%\svaserver.exe'
- '%WINDIR%\svbserver.exe'
- '%WINDIR%\svcserver.exe'
- '%WINDIR%\svbserver.exe' ' (со скрытым окном)