Техническая информация
- <SYSTEM32>\regsvr32.exe /s "<SYSTEM32>\msucmp.dll"
- <SYSTEM32>\cmd.exe /c ""%TEMP%\temp__28512.bat" "
- %PROGRAM_FILES%\Internet Explorer\IEXPLORE.EXE http://ju##.#1119.cn:31369/report2.ashx?m=###########################################################################
- %HOMEPATH%\Favorites\M32НшЦ·ґуИ«.url
- %APPDATA%\Microsoft\Internet Explorer\Quick Launch\Жф¶Ї Internet Explorer дЇААЖч.lnk
- %HOMEPATH%\Start Menu\Programs\Internet Explorer.lnk
- %HOMEPATH%\Desktop\ѕ«ІКРЎУОП·.url
- %TEMP%\temp__28512.bat
- %APPDATA%\Mozilla\Firefox\Profiles\cwdgt0y8.default\prefs.js
- %HOMEPATH%\Favorites\ѕ«ІКРЎУОП·.url
- %ALLUSERSPROFILE%\Desktop\Internet Explorer.lnk
- %APPDATA%\rptmodule.ini
- %APPDATA%\mpmodule.ini
- %HOMEPATH%\Desktop\Internet Explorer.lnk
- %ALLUSERSPROFILE%\Start Menu\Programs\Internet Explorer.lnk
- %HOMEPATH%\Start Menu\Internet Explorer.lnk
- %ALLUSERSPROFILE%\Start Menu\Internet Explorer.lnk
- 'ju##.41119.cn':31369
- 'localhost':1035
- DNS ASK ju##.41119.cn
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: '' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''