Техническая информация
- '' (загружен из сети Интернет)
- %HOMEPATH%\Local Settings\Temps.exe
- %HOMEPATH%\Local Settings\TempChrome.exe
- %HOMEPATH%\Local Settings\Tempwa.exe
- %HOMEPATH%\Local Settings\Tempfoto.exe
- %HOMEPATH%\Local Settings\TempCliarLog.cmd
- %HOMEPATH%\Local Settings\Temps.exe
- %HOMEPATH%\Local Settings\Tempwa.exe
- %HOMEPATH%\Local Settings\Tempfoto.exe
- %HOMEPATH%\Local Settings\TempCliarLog.cmd
- 'di##.#arelia.pro':80
- http://di##.#arelia.pro/aobrLZ0/s.exe
- http://di##.#arelia.pro/pGDVQSC/Chrome.exe
- http://di##.#arelia.pro/nqQJcZ2/wa.exe
- http://di##.#arelia.pro/uwhncEA/foto.exe
- http://di##.#arelia.pro/5GCs9dD/CliarLog.cmd
- DNS ASK di##.#arelia.pro
- '%HOMEPATH%\Local Settings\Temps.exe' Settings\Temps.exe
- '%HOMEPATH%\Local Settings\TempChrome.exe' Settings\TempChrome.exe
- '%HOMEPATH%\Local Settings\Tempwa.exe' Settings\Tempwa.exe
- '%HOMEPATH%\Local Settings\Tempfoto.exe' Settings\Tempfoto.exe
- '%HOMEPATH%\Local Settings\TempCliarLog.cmd' Settings\TempCliarLog.cmd
- '<SYSTEM32>\cmd.exe' /k ping -n 2 localhost < nul & del /F /Q "<Полный путь к файлу>"
- '<SYSTEM32>\ping.exe' -n 2 localhost