Техническая информация
- <SYSTEM32>\sxvabaz.exe (загружен из сети Интернет) 205435
- <SYSTEM32>\ping.exe -n 3 127.0.0.1
- <SYSTEM32>\cmd.exe /c <SYSTEM32>\boadmbskx.bat
- <SYSTEM32>\cmd.exe /c <SYSTEM32>\dktlada.bat
- %TEMP%\nsw5.tmp\InstallOptions.dll
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\image[1].jpg
- %TEMP%\nsw5.tmp\ioSpecial.ini
- %TEMP%\nsw5.tmp\modern-wizard.bmp
- <SYSTEM32>\sxvabaz.exe
- <SYSTEM32>\qobgqx.bat
- <SYSTEM32>\boadmbskx.bat
- <SYSTEM32>\bktcyew.bat
- <SYSTEM32>\dktlada.bat
- %TEMP%\nsw5.tmp\qvod2.ini
- %TEMP%\nsq4.tmp
- %TEMP%\nsw5.tmp\LangDLL.dll
- %TEMP%\nsh2.tmp\QvodSetup3.exe
- %TEMP%\nsh2.tmp\dl_205435.exe
- %TEMP%\nsw5.tmp\qvod1.ini
- %TEMP%\nsw5.tmp\google.ini
- %TEMP%\nsw5.tmp\t5_toolbar.bmp
- %TEMP%\nsw5.tmp\QvodInit.exe
- %TEMP%\nsw5.tmp\gtapi_signed.dll
- <SYSTEM32>\ddcnhetk.bat
- %TEMP%\nsh2.tmp\dl_205435.exe
- <SYSTEM32>\xyoheanabw.bat
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\image[1].jpg
- %TEMP%\nsw5.tmp\QvodInit.exe
- %TEMP%\nsw5.tmp\gtapi_signed.dll
- %TEMP%\nsw5.tmp\google.ini
- 'www.ba###com.net.cn':80
- 'www.ba###com.net.cn':8080
- www.ba###com.net.cn/sports/image.jpg
- DNS ASK www.ba###com.net.cn
- ClassName: 'Shell_TrayWnd' WindowName: ''