Техническая информация
- %HOMEPATH%\Start Menu\Programs\Startup1\TM.lnk
- %PROGRAM_FILES%\snss.exe
- %WINDIR%\Temp\c.exe
- %WINDIR%\Temp\d.exe
- <SYSTEM32>\cmd.exe /c ""%TEMP%\123.bat" "
- <SYSTEM32>\regsvr32.exe /s "<SYSTEM32>\Thunder.dll"
- %WINDIR%\regedit.exe /S %WINDIR%\RegText.reg
- <SYSTEM32>\Thunder.dll
- C:\1.lnk
- <SYSTEM32>\csys.dat
- %TEMP%\123.txt
- C:\2.lnk
- %PROGRAM_FILES%\Internet Explorer\d.exe
- %WINDIR%\Temp\c.exe
- %WINDIR%\Temp\d.exe
- %WINDIR%\RegText.reg
- %PROGRAM_FILES%\snss.exe
- <SYSTEM32>\sysini.ini
- %TEMP%\~DF43F3.tmp
- %WINDIR%\Temp\d.exe
- C:\1.lnk
- C:\2.lnk
- 'dx.##699.net':80
- 'localhost':1035
- DNS ASK dx.##699.net
- ClassName: 'RegEdit_RegEdit' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'EDIT' WindowName: ''