Техническая информация
- C:\i386\options\BATINFO\battinfo.exe --unattended
- <SYSTEM32>\ipconfig.exe /ALL
- <SYSTEM32>\cmd.exe /c ""%TEMP%\GLF7TM~1.BAT" "
- C:\i386\options\BATINFO\~GLH0007.TMP
- %ALLUSERSPROFILE%\Start Menu\Programs\Accessories\Thinkpad Battery Check.lnk
- C:\i386\options\BATINFO\~GLH0005.TMP
- C:\i386\options\BATINFO\~GLH0006.TMP
- %TEMP%\~GLBS383.TMP
- %TEMP%\GLF7.tmp
- %WINDIR%\BMSCOMENG\MARKER_FILES\<Имя вируса>.INI
- %TEMP%\GLF7.tmp.BAT
- C:\i386\options\BATINFO\~GLH0004.TMP
- %TEMP%\GLM3.tmp
- %TEMP%\GLG5.tmp
- %TEMP%\GLC1.tmp
- %TEMP%\GLK2.tmp
- %WINDIR%\BMSCOMENG\LOGGER\temp.000
- %WINDIR%\BMSCOMENG\INSTALL_LOGS\~GLH0003.TMP
- %TEMP%\~GLH0000.TMP
- %WINDIR%\BMSCOMENG\LOGGER\~GLH0001.TMP
- %TEMP%\GLF7.tmp
- %TEMP%\GLF7.tmp.BAT
- %WINDIR%\BMSCOMENG\LOGGER\~GLH0001.TMP
- 'in######ogger.pri.bms.com':80
- in######ogger.pri.bms.com/test.htm
- DNS ASK in######ogger.pri.bms.com
- ClassName: 'Shell_TrayWnd' WindowName: ''