Техническая информация
- '%APPDATA%\2345\bluesoft_gho_bsocvk_inst.exe'
- '%APPDATA%\2345\bluesoft_gho_bsocvk_inst.exe' (загружен из сети Интернет)
- '<SYSTEM32>\ipconfig.exe' /all
- %APPDATA%\2345.com\blue.exe
- %APPDATA%\2345\bluesoft_gho_bsocvk_inst.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\2VAZY7AN\count[1].asp
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\autofast[1].txt
- %APPDATA%\2345.com\autofast.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\bluesoft_gho_bsocvk_inst[1].exe
- 'hm#####04.chinaw3.com':80
- 'u.##ie.cn':80
- 'ha####5.gotoip4.com':80
- hm#####04.chinaw3.com/blue/count/count.asp?id##############################################
- u.##ie.cn/corp/download/bluesoft_gho_bsocvk_inst.exe
- ha####5.gotoip4.com/autofast.txt
- DNS ASK hm#####04.chinaw3.com
- DNS ASK u.##ie.cn
- DNS ASK ha####5.gotoip4.com