Техническая информация
- %HOMEPATH%\Start Menu\Programs\Startup\algzcu32.exe
- '%ProgramFiles%\Internet Explorer\IEXPLORE.EXE'
- %WINDIR%\Explorer.EXE
- %TEMP%\~TM9.tmp
- %TEMP%\~TM8.tmp
- %TEMP%\~TM7.tmp
- %TEMP%\~TMC.tmp
- %TEMP%\~TMB.tmp
- %TEMP%\~TMA.tmp
- %TEMP%\~TM5.tmp
- %TEMP%\~TM3.tmp
- %TEMP%\~TM2.tmp
- %TEMP%\~TM1.tmp
- %TEMP%\~TM4.tmp
- %TEMP%\~tm65237.tmp
- %APPDATA%\mdjaw.dat
- %HOMEPATH%\Start Menu\Programs\Startup\algzcu32.exe
- %TEMP%\~TM9.tmp
- %TEMP%\~TM8.tmp
- %TEMP%\~TMA.tmp
- %TEMP%\~TMC.tmp
- %TEMP%\~TMB.tmp
- %TEMP%\~TM7.tmp
- %TEMP%\~TM2.tmp
- %TEMP%\~TM1.tmp
- %TEMP%\~TM3.tmp
- %TEMP%\~TM5.tmp
- %TEMP%\~TM4.tmp
- из <Полный путь к файлу> в %TEMP%\~TM6.tmp
- 'www.va###ay007.com':80
- http://www.va###ay007.com/adm/controller.php?ac##############################################################
- DNS ASK www.va###ay007.com
- ClassName: 'Shell_TrayWnd' WindowName: ''