Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Longdat' = '%ProgramFiles%\ttmual\install.bat'
- %ProgramFiles%\FireFox\xpt_dump.exe
- %ProgramFiles%\FireFox\xpt_link.exe
- %ProgramFiles%\FireFox\xpidl.exe
- %ProgramFiles%\FireFox\updater.exe
- %ProgramFiles%\FireFox\xpcshell.exe
- %ProgramFiles%\MSN\MSNCoreFiles\Install\MSN9Components\Digcore.exe
- %ProgramFiles%\MSN\MSNCoreFiles\Install\MSN9Components\Msncli.exe
- %ProgramFiles%\MSN\MSNCoreFiles\Install\msnsusii.exe
- %ProgramFiles%\FireFox\uninstall\helper.exe
- %ProgramFiles%\Messenger\msmsgs.exe
- %ProgramFiles%\FireFox\crashreporter.exe
- %ProgramFiles%\FireFox\firefox.exe
- %CommonProgramFiles%\Microsoft Shared\DW\DWTRIG20.EXE
- C:\Far2\Far.exe
- %CommonProgramFiles%\Microsoft Shared\DW\DW20.EXE
- %ProgramFiles%\FireFox\plugin-container.exe
- %ProgramFiles%\FireFox\shlibsign.exe
- %ProgramFiles%\FireFox\nsinstall.exe
- %ProgramFiles%\FireFox\js.exe
- %ProgramFiles%\FireFox\mangle.exe
- '<SYSTEM32>\cmd.exe' /c del /q <Полный путь к файлу>
- '%ProgramFiles%\ttmual\Tisol.exe' injectDLL.dll,start
- '<SYSTEM32>\cmd.exe' /c ""%ProgramFiles%\ttmual\install.bat" "
- %ProgramFiles%\ttmual\Update.txt
- %ProgramFiles%\ttmual\Tisol.exe
- C:\Server.ini
- %TEMP%\bwa1.tmp
- %ProgramFiles%\ttmual\InjectDLL.dll
- C:\13.zip
- %ProgramFiles%\ttmual\Server.ini
- %ProgramFiles%\ttmual\install.bat
- %TEMP%\bwa1.tmp
- C:\13.zip
- 'ip.cn':80
- http://ip.cn/index.php?ip####################
- DNS ASK ip.cn