Техническая информация
- '%PROGRAM_FILES%\ComPlus\news.exe' c:\svip.exe===
- '%TEMP%\tmp00002a7895\msdcs.exe'
- '%TEMP%\tmp00002a7895\msdcc.exe'
- '<SYSTEM32>\Ico\lgj.exe'
- '<SYSTEM32>\Ico\ieeie.exe'
- 'C:\svip.exe'
- '<SYSTEM32>\find.exe' "Physical Address" ipconfig.txt
- '<SYSTEM32>\find.exe' "IP Address" ipconfig.txt
- '<SYSTEM32>\taskkill.exe' /f /im msdcs.exe
- '<SYSTEM32>\taskkill.exe' /f /im msdcc.exe
- '<SYSTEM32>\ping.exe' 10.0.0.1 -n 10
- '<SYSTEM32>\cmd.exe' /c ""%TEMP%\2.tmp\lgj.bat""
- '<SYSTEM32>\wscript.exe' "<SYSTEM32>\Ico\lgj.vbs"
- '<SYSTEM32>\find.exe' "Default Gateway" ipconfig.txt
- '<SYSTEM32>\ipconfig.exe' /all
- %PROGRAM_FILES%\ComPlus\msdcs.txta
- %PROGRAM_FILES%\ComPlus\news.exe
- C:\url.ini
- %PROGRAM_FILES%\ComPlus\msdcc.txta
- %PROGRAM_FILES%\ComPlus\drv.txta
- %TEMP%\tmp00002a7895\msdcc.exe
- %TEMP%\tmp00002a7895\msdcs.exe
- <SYSTEM32>\Ico\lgj.exe
- <SYSTEM32>\Ico\ieeie.exe
- %TEMP%\FP1.tmp
- <SYSTEM32>\Ico\lgj.vbs
- C:\svip.exe
- <SYSTEM32>\Ico\ipconfig.txt
- %TEMP%\2.tmp\lgj.bat
- %TEMP%\2.tmp\lgj.bat
- C:\svip.exe
- %TEMP%\FP1.tmp
- <SYSTEM32>\Ico\ipconfig.txt
- ClassName: '(null)' WindowName: '(null)'
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: 'EDIT' WindowName: '(null)'