Техническая информация
- 'C:\duba_94_17.exe'
- 'C:\QQPCDownload72844.exe'
- 'C:\bDExMGwxNzU4Mw==.exe'
- 'C:\QQPCDownload72844.exe' (загружен из сети Интернет)
- 'C:\bDExMGwxNzU4Mw==.exe' (загружен из сети Интернет)
- 'C:\duba_94_17.exe' (загружен из сети Интернет)
- '<SYSTEM32>\ntvdm.exe' -f -i1
- C:\kuyouxi.exe
- C:\V8._81529_20150723001226.exe
- C:\BlueInstaller_bscpgudy_164021_.exe
- C:\BlueResource.bpk
- C:\bDExMGwxNzU4Mw==.exe
- C:\install1148140.exe
- %WINDIR%\Temp\scs1.tmp
- <Текущая директория>\sa.exe
- %WINDIR%\Temp\scs2.tmp
- C:\QQPCDownload72844.exe
- C:\duba_94_17.exe
- %WINDIR%\Temp\scs2.tmp
- %WINDIR%\Temp\scs1.tmp
- 'www.ts###gjian.com':80
- 'ke##eb.cn':80
- 'localhost':1039
- http://ke##eb.cn/BlueInstaller_bscpgudy_164021_.exe
- http://ke##eb.cn/kuyouxi.exe
- http://ke##eb.cn/BlueResource.bpk
- http://www.ts###gjian.com/feichang_110_17583.exe
- http://ke##eb.cn/QQPCDownload72844.exe
- http://ke##eb.cn/duba_94_17.exe
- http://ke##eb.cn/V8._81529_20150723001226.exe
- http://ke##eb.cn/install1148140.exe
- DNS ASK www.ts###gjian.com
- DNS ASK ke##eb.cn
- ClassName: 'ConsoleWindowClass' WindowName: 'ntvdm-b74.b78.380001'