Техническая информация
- <SYSTEM32>\cmd.exe /c """%TEMP%\2011-07-04 14-58-40 281.bat"" "
- <SYSTEM32>\cmd.exe /c """%TEMP%\2011-07-04 14-58-39 640.bat"" "
- <SYSTEM32>\cmd.exe /c """%TEMP%\2011-07-04 14-58-40 875.bat"" "
- <SYSTEM32>\reg.exe add "HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main" /v "Default_Page_URL" /t reg_sz /d http://www.xi##o.net /f
- <SYSTEM32>\reg.exe add "HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main" /v "Start Page" /t reg_sz /d http://www.xi##o.net /f
- <SYSTEM32>\cmd.exe /c """%TEMP%\РЮёґIE.bat"" "
- <SYSTEM32>\cmd.exe /c """%TEMP%\2011-07-04 14-58-38 890.bat"" "
- <SYSTEM32>\cmd.exe /c """%TEMP%\2011-07-04 14-58-38 578.bat"" "
- %HOMEPATH%\Desktop\╠╘▒ж╡╝╣║.URL
- %TEMP%\2011-07-04 14-58-40 281.bat
- %TEMP%\2011-07-04 14-58-38 890.bat
- %TEMP%\2011-07-04 14-58-39 640.bat
- %HOMEPATH%\Desktop\Internet Exp1orer.URL
- %HOMEPATH%\Desktop\╔╧═°╡╝║╜.url
- %APPDATA%\Microsoft\Internet Explorer\Quick Launch\Internet Exp1orer.URL
- %TEMP%\2011-07-04 14-58-40 875.bat
- %HOMEPATH%\Desktop\╠╘▒ж═°.url
- %PROGRAM_FILES%\РЎУОП·\РЎУОП·.exe
- %PROGRAM_FILES%\РЎУОП·\taobao.ico
- %TEMP%\РЮёґIE.bat
- %PROGRAM_FILES%\РЎУОП·\РЎУОП·tmp.exe
- %PROGRAM_FILES%\РЎУОП·\baidu.ico
- %HOMEPATH%\Favorites\МФ±¦µј№є.url
- %TEMP%\2011-07-04 14-58-38 578.bat
- %PROGRAM_FILES%\РЎУОП·\xianyu.ico
- %HOMEPATH%\Favorites\МФ±¦Нш.url
- 'so#.5k5.net':80
- so#.5k5.net/interface?ac###################################################################
- DNS ASK so#.5k5.net