Техническая информация
- '<SYSTEM32>\cmd.exe' /c ""%TEMP%\7ZSfx000.cmd" "
- 'C:\BMRegions\bmlog\bmlog.exe'
- %HOMEPATH%\Local Settings\<INETFILES>\Content.IE5\U98D4X8H\libmysql[1]
- C:\BMRegions\bmlog\dbxmys.dll
- C:\BMRegions\bmlog\libmysql.dll
- C:\BMRegions\bmlog\bmlog.mdb
- %HOMEPATH%\Local Settings\<INETFILES>\Content.IE5\2VAZY7AN\bmlog[1].mdb
- %TEMP%\7ZSfx000.cmd
- C:\BMRegions\bmlog\bmlog.exe
- C:\BMRegions\bmlog\logs\2017-04-13.txt
- %HOMEPATH%\Local Settings\<INETFILES>\Content.IE5\KHMHGZ4F\dbxmys[1]
- %HOMEPATH%\Desktop\BMlog.lnk
- %TEMP%\7ZSfx000.cmd
- 'ze##trnd.ru':80
- 'localhost':1036
- http://ze##trnd.ru/zn/bmlog/bmlog.mdb?u=####
- http://ze##trnd.ru/zn/bmlog/bmlog.ver
- http://ze##trnd.ru/zn/bkz/dbxmys.dll?u=###
- http://ze##trnd.ru/zn/bkz/libmysql.dll?u=####
- DNS ASK ze##trnd.ru
- ClassName: 'Shell_TrayWnd' WindowName: ''