Техническая информация
- '%TEMP%\nsr2.tmp\ns5.tmp' net stop Dhcp
- '%TEMP%\nsr2.tmp\ns4.tmp' cmd.exe /c netsh interface ip set address name="Local Area Connection" source=dhcp
- '%TEMP%\nsr2.tmp\ns3.tmp' cmd.exe /c netsh -c interface dump>c:\ipconfig.txt
- '<SYSTEM32>\net1.exe' stop Dhcp
- '<SYSTEM32>\net.exe' stop Dhcp
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- %TEMP%\nsr2.tmp\ns3.tmp
- %TEMP%\nsr2.tmp\Internet.dll
- %TEMP%\nsr2.tmp\nsExec.dll
- %TEMP%\nsr2.tmp\ns4.tmp
- %TEMP%\nsr2.tmp\ns5.tmp
- C:\ipconfig.txt
- %TEMP%\nsr2.tmp\Math.dll
- %PROGRAM_FILES%\baidu\dsop8.xml
- %TEMP%\nsr2.tmp\System.dll
- %PROGRAM_FILES%\baidu\opt256.xml
- %PROGRAM_FILES%\baidu\new.exe
- %TEMP%\nsr2.tmp\nsRandom.dll
- %TEMP%\nsr2.tmp\AccessControl.dll
- %PROGRAM_FILES%\baidu\tempnethome18.ini
- %PROGRAM_FILES%\baidu\uninst18.exe
- <SYSTEM32>\wbem\Performance\WmiApRpl.ini
- <SYSTEM32>\PerfStringBackup.TMP
- %TEMP%\nsr2.tmp\ns3.tmp
- %TEMP%\nsr2.tmp\ns4.tmp
- 'tj.#ogle.cn':80
- tj.#ogle.cn/svr.asp?t=###################################
- DNS ASK tj.#ogle.cn
- ClassName: 'Shell_TrayWnd' WindowName: ''