Техническая информация
- '%CommonProgramFiles%\MM-liao8398.exe'
- '%CommonProgramFiles%\SoHuVA_4.3.0.1-c204900003-ng-nti-s-x.exe'
- '%CommonProgramFiles%\yx_dts.exe'
- '%CommonProgramFiles%\OfficeAssist.0419.80.1123.exe'
- '%CommonProgramFiles%\MM-liao8398.exe' (загружен из сети Интернет)
- '%CommonProgramFiles%\SoHuVA_4.3.0.1-c204900003-ng-nti-s-x.exe' (загружен из сети Интернет)
- '%CommonProgramFiles%\OfficeAssist.0419.80.1123.exe' (загружен из сети Интернет)
- '%CommonProgramFiles%\yx_dts.exe' (загружен из сети Интернет)
- %CommonProgramFiles%\OK
- %TEMP%\nsn2.tmp\Base64.dll
- %CommonProgramFiles%\SoHuVA_4.3.0.1-c204900003-ng-nti-s-x.exe
- %TEMP%\nsn2.tmp\ExecCmd.dll
- %CommonProgramFiles%\F1023_s_30974.exe
- %CommonProgramFiles%\MM-liao8398.exe
- %TEMP%\nsn2.tmp\Inetc.dll
- %CommonProgramFiles%\1.ico
- %TEMP%\nsn2.tmp\System.dll
- %CommonProgramFiles%\yx_dts.exe
- %CommonProgramFiles%\OfficeAssist.0419.80.1123.exe
- %CommonProgramFiles%\1.rar
- 'www.fe###hangyu.com':80
- 'mm####.jianting.net':80
- 'id#.##--r93a55o.cc':80
- 'in#.###ol.sina.com.cn':80
- 'pc####.b0.upaiyun.com':443
- www.fe###hangyu.com/YjY2MmVmNDkuZXhl/40.html
- mm####.jianting.net/mmliao/MM-liao8398.exe
- id#.##--r93a55o.cc/F1023_s_30974.exe
- id#.##--r93a55o.cc/SoHuVA_4.3.0.1-c204900003-ng-nti-s-x.rar
- in#.###ol.sina.com.cn/iplookup/iplookup.php
- id#.##--r93a55o.cc/OfficeAssist.0419.80.1123.exe
- id#.##--r93a55o.cc/yx_dts.exe
- DNS ASK www.fe###hangyu.com
- DNS ASK mm####.jianting.net
- DNS ASK id#.##--r93a55o.cc
- DNS ASK in#.###ol.sina.com.cn
- DNS ASK pc####.b0.upaiyun.com
- ClassName: 'Shell_TrayWnd' WindowName: ''