Техническая информация
- '%WINDIR%\Temp\{B85DD98A-5AB2-4BF3-BDDE-7AA068A96FC9}.exe' -p8grfd@# -d"%WINDIR%\Temp\" -s
- '%WINDIR%\Temp\Main.exe'
- '%WINDIR%\Temp\Temp.exe'
- '%TEMP%\RarSFX0\Setup.exe'
- '%WINDIR%\Temp\{C2CADC3D-F627-4952-9BAA-BC9E3EDBD388}.exe' -p%$#%gafE -d"%WINDIR%\Temp\" -s
- %WINDIR%\Temp\Download.dll
- %WINDIR%\Temp\Main.exe
- %TEMP%\sidrunet.tid
- %WINDIR%\Temp\Execute.dll
- %WINDIR%\Temp\{C2CADC3D-F627-4952-9BAA-BC9E3EDBD388}.exe
- %TEMP%\RarSFX0\Setup.exe
- %WINDIR%\Temp\{B85DD98A-5AB2-4BF3-BDDE-7AA068A96FC9}.exe
- %WINDIR%\Temp\Temp.exe
- %WINDIR%\Temp\Temp.exe
- %TEMP%\RarSFX0\Setup.exe
- %WINDIR%\Temp\{C2CADC3D-F627-4952-9BAA-BC9E3EDBD388}.exe
- %WINDIR%\Temp\{B85DD98A-5AB2-4BF3-BDDE-7AA068A96FC9}.exe
- 'st#.#ndwn.cn':80
- st#.#ndwn.cn/log/ver.asp?ID#####
- DNS ASK st#.#ndwn.cn
- ClassName: 'MS_WINHELP' WindowName: '(null)'
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: 'EDIT' WindowName: '(null)'