Техническая информация
- <SYSTEM32>\d3d9.dll
- '<SYSTEM32>\qinger.dll'
- %TEMP%\14f1.tmp
- <SYSTEM32>\qinger.dll
- 'www.cf###oqi.com':80
- 'localhost':1045
- 'do##.#iansin.com':80
- 'qq#.#d6d.com':80
- 'localhost':1036
- 'bb#.#996.com':80
- 'localhost':1040
- www.cf###oqi.com/
- do##.#iansin.com/
- qq#.#d6d.com/?fr##########
- bb#.#996.com/mode.php?m=#################
- bb#.#996.com/hack.php?H_#################
- DNS ASK www.cf###oqing.com
- DNS ASK www.cf###oqi.com
- DNS ASK do##.#iansin.com
- DNS ASK bb#.#996.com
- DNS ASK qq#.#d6d.com
- DNS ASK 11#####005.qzone.qq.com
- ClassName: 'IEFrame' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'ConsoleWindowClass' WindowName: 'їЁНЫТБНёКУ'
- ClassName: 'ConsoleWindowClass' WindowName: '??????????'
- ClassName: '' WindowName: ''
- ClassName: '' WindowName: 'Microsoft Internet Explorer'
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''