Техническая информация
- %HOMEPATH%\Start Menu\Programs\Startup\Pre-Setting 233ufgc.lnk
- '<SYSTEM32>\wscript.exe' "%TEMP%\order_عд.vbs"
- '<SYSTEM32>\wscript.exe' "%TEMP%\order_zي.vbs"
- '<SYSTEM32>\wscript.exe' "%TEMP%\order_ضрс.vbs"
- '<SYSTEM32>\wscript.exe' "%TEMP%\order_UEL.vbs"
- '<SYSTEM32>\wscript.exe' "%TEMP%\order_طص.vbs"
- '<SYSTEM32>\wscript.exe' "%TEMP%\order_زUп.vbs"
- '<SYSTEM32>\wscript.exe' "%TEMP%\order_Jhو.vbs"
- '<SYSTEM32>\wscript.exe' "%TEMP%\order_قكшъ.vbs"
- '<SYSTEM32>\ping.exe' -n 1 www.google.com
- 'C:\Recycle.Bin\DEKpmd\dwn_bEHNj.exe'
- 'C:\Recycle.Bin\DEKpmd\dwn_DyLZsdk.exe'
- %TEMP%\order_zي.vbs
- C:\Recycle.Bin\DEKpmd\tik_ijzSy.txt
- %TEMP%\order_Jhو.vbs
- %TEMP%\order_عд.vbs
- %TEMP%\order_ضрс.vbs
- %TEMP%\order_UEL.vbs
- C:\Recycle.Bin\DEKpmd\tik_HfWYMy.txt
- C:\Recycle.Bin\DEKpmd\tik_mXJtm.txt
- C:\Recycle.Bin\DEKpmd\wbs.txt
- C:\Recycle.Bin\wbs.txt
- C:\Recycle.Bin\sign231.txt
- C:\Recycle.Bin\DEKpmd\dwn_DyLZsdk.exe
- %TEMP%\order_قكшъ.vbs
- %TEMP%\order_طص.vbs
- %TEMP%\order_زUп.vbs
- C:\Recycle.Bin\DEKpmd\dwn_DyLZsdk.exe в C:\Recycle.Bin\DEKpmd\dwn_bEHNj.exe
- DNS ASK www.google.com
- ClassName: 'Shell_TrayWnd' WindowName: ''