Техническая информация
- %CommonProgramFiles%\paozu.exe
- %CommonProgramFiles%\paozu.exe (загружен из сети Интернет)
- <SYSTEM32>\cmd.exe /c %CommonProgramFiles%\suoyouxins.bat
- %CommonProgramFiles%\ppna.txt
- %CommonProgramFiles%\done.txt
- %CommonProgramFiles%\suoyouxins.bat
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\oRun[1].exe
- %CommonProgramFiles%\feiji.txt
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\count[1].asp
- 'x2.##odaita.com':80
- 'me####.baitou3.com':80
- 'localhost':1036
- x2.##odaita.com/count.asp?id#########################################
- me####.baitou3.com/x0606/game032/oRun.exe
- DNS ASK x2.##odaita.com
- DNS ASK me####.baitou3.com