Техническая информация
- '<SYSTEM32>\net1.exe' stop "Windows Firewall/Internet Connection Sharing (ICS)"
- '<SYSTEM32>\net1.exe' stop "Security Center"
- '<SYSTEM32>\cmd.exe' /c ""C:\kdt76ie5w4h5qaa108.bat""
- '%PROGRAM_FILES%\Internet Explorer\IEXPLORE.EXE' http://st##.##nrar2009.cn:88/db.htm
- '<SYSTEM32>\sc.exe' config wscsvc start= DISABLED
- '<SYSTEM32>\net.exe' stop "Security Center"
- '<SYSTEM32>\sc.exe' config SharedAccess start= DISABLED
- '<SYSTEM32>\net.exe' stop "Windows Firewall/Internet Connection Sharing (ICS)"
- C:\kdt76ie5w4h5qaa108.bat
- 'localhost':1041
- 'st##.#inrar2009.cn':88
- 'localhost':1036
- 'se######.##crosoft-update-center.com':88
- DNS ASK st##.#inrar2009.cn
- DNS ASK se######.##crosoft-update-center.com
- ClassName: 'MS_AutodialMonitor' WindowName: '(null)'
- ClassName: 'MS_WebcheckMonitor' WindowName: '(null)'
- ClassName: '' WindowName: '(null)'
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'