Техническая информация
- %ALLUSERSPROFILE%\Start Menu\Programs\Startup\WinInetDriver.url
- %TEMP%\Battlegroundcheats_Launcher.exe
- %TEMP%\BGCLauncher.exe
- %ALLUSERSPROFILE%\Application Data\{2b4b09-ba1525-e802-25196f02134c}\hostdl.exe
- %TEMP%\tmp1.tmp
- %TEMP%\tmp2.tmp
- <SYSTEM32>\wbem\AutoRecover\C8463ECBE33BC240263A0B094E46D510.mof
- %TEMP%\tmp3.tmp
- <SYSTEM32>\wbem\AutoRecover\23BDE61F1F4FACE17E9B0C01F2A1FD9B.mof
- <Текущая директория>\TempWmicBatchFile.bat
- %TEMP%\dd\screen.jpeg
- %TEMP%\dd.zip
- %ALLUSERSPROFILE%\Application Data\{2b4b09-ba1525-e802-25196f02134c}\hostdl.exe
- %TEMP%\tmp1.tmp
- %TEMP%\tmp2.tmp
- %TEMP%\tmp3.tmp
- %TEMP%\dd\screen.jpeg
- 'wp#d':80
- http://11#.#11.111.1/wpad.dat via wp#d
- DNS ASK wp#d
- '%TEMP%\Battlegroundcheats_Launcher.exe'
- '%TEMP%\BGCLauncher.exe'
- '<SYSTEM32>\schtasks.exe' /create /tn WinInetDriver /tr %ALLUSERSPROFILE%\Application Data\{2b4b09-ba1525-e802-25196f02134c}\hostdl.exe /sc minute /F