Техническая информация
- %HOMEPATH%\Start Menu\Programs\Startup\WordPad.exe
- Средство контроля пользовательских учетных записей (UAC)
- '%TEMP%\RarSFX1\loader.exe'
- '%TEMP%\winext.exe'
- '<SYSTEM32>\cmd.exe' /c %TEMP%\Melt.bat
- '%TEMP%\RarSFX0\loads.exe'
- '<SYSTEM32>\cmd.exe' /c ""%TEMP%\1.tmp\2.bat" %TEMP%\RarSFX0\loads.exe"
- '%TEMP%\RarSFX0\loader.sfx.exe' -pqwerty -d%HOMEPATH%\Local Settings\Temp
- %TEMP%\winext.exe
- %TEMP%\~DFF5EF.tmp
- %TEMP%\Melt.bat
- %TEMP%\~DF955.tmp
- %TEMP%\RarSFX1\loader.exe
- %TEMP%\RarSFX0\loads.exe
- %TEMP%\RarSFX0\loader.sfx.exe
- %TEMP%\1.tmp\2.bat
- %TEMP%\RarSFX0\SteamInstall.msi
- %HOMEPATH%\Start Menu\Programs\Startup\WordPad.exe
- %TEMP%\winext.exe
- %TEMP%\RarSFX0\loader.sfx.exe
- %TEMP%\RarSFX0\loads.exe
- %TEMP%\RarSFX0\SteamInstall.msi
- %TEMP%\~DFF5EF.tmp
- %TEMP%\RarSFX1\loader.exe
- %TEMP%\1.tmp\2.bat
- 'om##bani.ga':80
- http://om##bani.ga/asset/Panel/
- http://om##bani.ga/asset/Panel/inc/read.php
- http://om##bani.ga/asset/Panel/plugins/passwords.p
- http://om##bani.ga/asset/Panel/plugins/ftp.p
- http://om##bani.ga/asset/Panel/plugins/mail.p
- http://om##bani.ga/asset/Panel/gate.php
- DNS ASK om##bani.ga
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'EDIT' WindowName: ''