Техническая информация
- %HOMEPATH%\Recent\b10.exe (загружен из сети Интернет)
- <SYSTEM32>\cmd.exe /c C:\vvvvv.bat
- %HOMEPATH%\Recent\b10.exe
- %PROGRAM_FILES%\dweb\dgweb.dll
- <SYSTEM32>\dgup.exe
- C:\vvvvv.bat
- 'di####-web.co.kr':80
- 'dw.###ect-web.co.kr':80
- 'www.na##r.com':80
- dw.###ect-web.co.kr/pgm2/at.exe
- dw.###ect-web.co.kr/pgm2/dgweb.dll
- di####-web.co.kr/ctrl2/loading_direct.php?ty###########
- dw.###ect-web.co.kr/pgm2/version.php
- dw.###ect-web.co.kr/pgm2/dgup.exe
- DNS ASK di####-web.co.kr
- DNS ASK dw.###ect-web.co.kr
- DNS ASK www.na##r.com
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'MS_WINHELP' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: '' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''