Техническая информация
- Системный антивирус (Защитник Windows)
- Средство контроля пользовательских учетных записей (UAC)
- %TEMP%\aut1.tmp
- %TEMP%\2840esbaklo
- %TEMP%\aut2.tmp
- \\Device\\HarddiskVolume1\\Documents and Settings\\%USERNAME%\\Desktop\\QQ\u6d4f\u89c8\u5668.lnk
- %TEMP%\aut3.tmp
- \\Device\\HarddiskVolume1\\Documents and Settings\\%USERNAME%\\Desktop\\\u7231\u5947\u827a.lnk
- \\Device\\HarddiskVolume1\\Documents and Settings\\%USERNAME%\\Desktop\\\u9177\u72d7\u97f3\u4e50.lnk
- \\Device\\HarddiskVolume1\\Documents and Settings\\%USERNAME%\\Desktop\\2345\u738b\u724c\u6d4f\u89c8\u5668.lnk
- %TEMP%\aut4.tmp
- C:\Users\Administrator\AppData\Roaming\360se6\User Data\Default\Preferences
- %TEMP%\aut5.tmp
- C:\Users\Administrator\AppData\Roaming\360se6\User Data\Default\Bookmarks
- %TEMP%\aut6.tmp
- %TEMP%\New_YH.reg
- %TEMP%\aut1.tmp
- %TEMP%\2840esbaklo
- %TEMP%\aut2.tmp
- %TEMP%\aut3.tmp
- %TEMP%\aut4.tmp
- %TEMP%\aut5.tmp
- %TEMP%\aut6.tmp
- ClassName: 'RegEdit_RegEdit' WindowName: ''
- '<SYSTEM32>\cmd.exe' /c regedit /s "%TEMP%\New_YH.reg"
- '%WINDIR%\regedit.exe' /s "%TEMP%\New_YH.reg"
- '<SYSTEM32>\cmd.exe' /c powercfg -change -monitor-timeout-ac 20
- '<SYSTEM32>\powercfg.exe' -change -monitor-timeout-ac 20
- '<SYSTEM32>\cmd.exe' /c powercfg -change -standby-timeout-ac 0
- '<SYSTEM32>\powercfg.exe' -change -standby-timeout-ac 0