Техническая информация
- '%TEMP%\TOLWSC.exe'
- '%TEMP%\2fb9c.tmp\2fba4962.exe'
- %PROGRAM_FILES%\GEd1fc2\log.dat
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\by10086[1].ini
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\by10086[1].zip
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\2VAZY7AN\by10086[1].zip
- %PROGRAM_FILES%\GEd1fc2\Run.zip
- %TEMP%\TOLWSC.exe
- <SYSTEM32>\HintSok.dll
- <SYSTEM32>\HintSock.dll
- <SYSTEM32>\HintSock.dat
- %TEMP%\2fb9c.tmp\2fba4962.exe
- <SYSTEM32>\version
- %PROGRAM_FILES%\GEd1fc2\Run.zip
- %PROGRAM_FILES%\GEd1fc2\log.dat
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\2VAZY7AN\by10086[1].zip
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\by10086[1].zip
- %PROGRAM_FILES%\GEd1fc2\Run.zip
- '60.##0.154.142':9999
- 'in#.#88b.com':80
- '12#.#26.129.188':8888
- '61.##3.235.58':1023
- in#.#88b.com/soft/58wangwei/by10086.zip
- in#.#88b.com/58wangwei/by10086.ini
- DNS ASK in#.#88b.com