Техническая информация
- '%TEMP%\nsa3.tmp\CnetInstaller-75185997.exe' /home "<Текущая директория>" /ts 1419000474 /env prod
- '%TEMP%\nsa3.tmp\CnetInstaller-75185997.exe' (загружен из сети Интернет)
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- '<SYSTEM32>\netsh.exe' advfirewall firewall add rule name="proinstaller676" program="%TEMP%\nsa3.tmp\CnetInstaller-75185997.exe" dir=in action=allow enable=yes
- '<SYSTEM32>\netsh.exe' advfirewall firewall add rule name="proinstaller676" program="%TEMP%\nsa3.tmp\CnetInstaller-75185997.exe" dir=out action=allow enable=yes
- %TEMP%\nsa3.tmp\CnetInstaller-75185997.exe
- %TEMP%\nsa3.tmp\downloadLink
- %TEMP%\nsa3.tmp\ping
- %TEMP%\nsa3.tmp\nsRandom.dll
- %TEMP%\nsa3.tmp\UserInfo.dll
- %TEMP%\nsz2.tmp
- %TEMP%\nsa3.tmp\inetca.dll
- %TEMP%\nsa3.tmp\System.dll
- %TEMP%\nsa3.tmp\ping
- %TEMP%\nsa3.tmp\System.dll
- %TEMP%\nsa3.tmp\UserInfo.dll
- %TEMP%\nsa3.tmp\nsRandom.dll
- %TEMP%\nsa3.tmp\CnetInstaller-75185997.exe
- %TEMP%\nsa3.tmp\downloadLink
- %TEMP%\nsa3.tmp\inetca.dll
- 'www.re#####ng-download.com':80
- www.re#####ng-download.com/images/pixel.gif?sr###############################################################
- www.re#####ng-download.com/advplatform/CnetInstaller.exe?ap############
- www.re#####ng-download.com/advplatform/api.cgi?ac######################################################
- DNS ASK www.re#####ng-download.com
- ClassName: 'Shell_TrayWnd' WindowName: ''