Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] '[EXPL0RER]' = '%WINDIR%\Inex.exe'
- '%WINDIR%\Inex.exe'
- %TEMP%\(1).zip
- %WINDIR%\Inex.exe
- 'ip.#q.com':80
- '10#.#4.206.139':80
- ip.#q.com/
- 10#.#4.206.139/zhen.txt
- 10#.#4.206.139/jia.txt
- 10#.#4.206.139/Ftpip.txt
- 10#.#4.206.139/Ftpid.txt
- 10#.#4.206.139/Ftpmima.txt
- DNS ASK ip.#q.com
- ClassName: '' WindowName: ''
- ClassName: 'SE_SogouExplorerFrame' WindowName: ''
- ClassName: '360se_Frame' WindowName: ''
- ClassName: 'RC_CORAL_CLASS_FRAME2' WindowName: ''
- ClassName: 'Windows Internet Explorer_Frame' WindowName: ''
- ClassName: 'CabinetWClass' WindowName: ''
- ClassName: 'Chrome_WidgetWin_1' WindowName: ''
- ClassName: 'QQBrowserMainFrame' WindowName: ''