Техническая информация
- %WINDIR%\system\csrss.exe
- %WINDIR%\system\csrss.exe (загружен из сети Интернет)
- %WINDIR%\sleep.exe 100
- <SYSTEM32>\cmd.exe /c ""%WINDIR%\inf\svchost.bat" "
- <SYSTEM32>\regsvr32.exe /s <SYSTEM32>\mscseo32.dll
- %WINDIR%\system\lsass.exe
- <SYSTEM32>\mscseo32.dll
- <SYSTEM32>\cuiqing.dll
- %WINDIR%\inf\svchost.bat
- <SYSTEM32>\zhuangyang.dll
- <SYSTEM32>\mscseo32.tmp
- %WINDIR%\system\csrss.exe
- %WINDIR%\system\lsass.tmp
- <SYSTEM32>\zhuangyang.tmp
- <SYSTEM32>\cuiqing.tmp
- <SYSTEM32>\cuiqing.tmp
- <SYSTEM32>\zhuangyang.tmp
- <SYSTEM32>\mscseo32.tmp
- %WINDIR%\system\lsass.tmp
- 'www.ma##an2.org':80
- www.ma##an2.org/webtools/cuiqing.dll
- www.ma##an2.org/webtools/zhuangyang.dll
- www.ma##an2.org/webtools/Tray360.exe
- www.ma##an2.org/webtools/qq.exe
- www.ma##an2.org/webtools/mscseo32.dll
- DNS ASK www.ma##an2.org
- '<IP-адрес в локальной сети>':1035