Техническая информация
- <SYSTEM32>\cmd.exe /c ""%TEMP%\2012-09-24 19-57-06 859.bat" "
- <SYSTEM32>\reg.exe add "HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main" /v "Default_Page_URL" /t reg_sz /d http://www.6d##u.com /f
- <SYSTEM32>\cmd.exe /c ""%TEMP%\2012-09-24 19-57-19 640.bat" "
- <SYSTEM32>\cmd.exe /c ""%TEMP%\2012-09-24 19-57-13 937.bat" "
- <SYSTEM32>\cmd.exe /c ""%TEMP%\РЮёґIE.bat" "
- <SYSTEM32>\cmd.exe /c ""%TEMP%\2012-09-24 19-56-46 953.bat" "
- <SYSTEM32>\cmd.exe /c ""%TEMP%\2012-09-24 19-57-04 015.bat" "
- <SYSTEM32>\reg.exe add "HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main" /v "Start Page" /t reg_sz /d http://www.6d##u.com /f
- %TEMP%\2012-09-24 19-57-06 859.bat
- %HOMEPATH%\Desktop\╠╘▒ж╡╝╣║.URL
- %TEMP%\2012-09-24 19-57-04 015.bat
- %HOMEPATH%\Favorites\µ±µ±Нш.url
- %HOMEPATH%\Favorites\МФ±¦Нш.url
- %HOMEPATH%\Desktop\╠╘▒ж═°.url
- %HOMEPATH%\Desktop\╔╧═°╡╝║╜.url
- %TEMP%\2012-09-24 19-57-19 640.bat
- %TEMP%\2012-09-24 19-57-13 937.bat
- %HOMEPATH%\Desktop\Internet Exp1orer.URL
- %PROGRAM_FILES%\РЎУОП·\xianyu.ico
- %PROGRAM_FILES%\РЎУОП·\РЎУОП·tmp.exe
- %PROGRAM_FILES%\РЎУОП·\РЎУОП·.exe
- %TEMP%\РЮёґIE.bat
- %TEMP%\2012-09-24 19-56-46 953.bat
- %APPDATA%\Microsoft\Internet Explorer\Quick Launch\Internet Exp1orer.URL
- %PROGRAM_FILES%\РЎУОП·\baidu.ico
- %PROGRAM_FILES%\РЎУОП·\dangdangwang.ico
- %PROGRAM_FILES%\РЎУОП·\taobao.ico
- %PROGRAM_FILES%\РЎУОП·\Uninstall.exezip
- %PROGRAM_FILES%\РЎУОП·\Uninstall.exe
- 'so#.5k5.net':80
- so#.5k5.net/interface?ac##################################################
- DNS ASK so#.5k5.net