Техническая информация
- %HOMEPATH%\Start Menu\Programs\Startup\adb.url
- %TEMP%\33077.tmp
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\cgi_personal_card[1]
- %TEMP%\337ab.tmp
- %WINDIR%\sdqlyk \adb.url
- %WINDIR%\Debug\UserMode\userenv.log
- C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\CJCTQ25G\cgi_personal_card[1]
- [<HKLM>\SYSTEM\ControlSet001\Services\Spooler11] 'Start' = '00000002'
- '%WINDIR%\sdqlyk \dwm.exe'
- '%WINDIR%\sdqlyk \dwm.exe' \dwm.exe
- '<SYSTEM32>\ping.exe' 127.0.0.1 -n 1
- %WINDIR%\Temp\2bbd4.tmp
- %WINDIR%\sdqlyk \dwm.exe
- %TEMP%\33077.tmp
- %TEMP%\337ab.tmp
- %WINDIR%\Temp\2bbd4.tmp
- %WINDIR%\sdqlyk \dwm.exe
- 'r.###ne.qq.com':80
- 'localhost':1040
- 'wi#####ystem.f3322.org':6000
- 'localhost':1037
- r.###ne.qq.com/cgi-bin/user/cgi_personal_card?ui##
- DNS ASK r.###ne.qq.com
- DNS ASK wi#####ystem.f3322.org
- ClassName: '(null)' WindowName: 'sdqlisagoodsoftware29062'