Техническая информация
- %TEMP%\jusc74e.tmp
- %TEMP%\ltsc7cc.tmp
- %TEMP%\jusc82b.tmp
- C:\users\public\odbc\odbc0\tmpad00.tmp
- C:\users\public\odbc\odbc0\appmgmt.dll
- C:\users\public\odbc\odbc0\config.dat
- %LOCALAPPDATA%\tptemp\lgtc9c2.tmp
- C:\users\public\odbc\dbengin.exe
- C:\users\public\odbc\wuauctl.exe
- C:\users\public\odbc\odbc0\appmgmt.def
- C:\users\public\odbc\odbc0\tmpad00.tmp
- %TEMP%\jusc74e.tmp
- %TEMP%\jusc82b.tmp
- %TEMP%\ltsc7cc.tmp
- C:\users\public\odbc\odbc0\config.dat
- %LOCALAPPDATA%\tptemp\lgtc9c2.tmp в %LOCALAPPDATA%\tptemp\lgtc9c2.tmp.bat
- '1.#.1.1':123
- 'C:\users\public\odbc\wuauctl.exe' "c:\users\public\odbc\odbc0\appmgmt.dll",lame_set_out_sample %WINDIR%\TEMP\uDE8F.tmp,80
- 'C:\users\public\odbc\wuauctl.exe' "c:\users\public\odbc\odbc0\appmgmt.dll",lame_set_out_sample %WINDIR%\TEMP\uDF2C.tmp,80
- '%WINDIR%\syswow64\net.exe' start AppMgmt' (со скрытым окном)
- '%WINDIR%\syswow64\cmd.exe' /c %LOCALAPPDATA%\TpTemp\lgtC9C2.tmp.bat' (со скрытым окном)
- '%WINDIR%\syswow64\net.exe' start AppMgmt
- '%WINDIR%\syswow64\cmd.exe' /c %LOCALAPPDATA%\TpTemp\lgtC9C2.tmp.bat
- '%WINDIR%\syswow64\chcp.com' 1252
- '%WINDIR%\syswow64\net1.exe' start AppMgmt
- '%WINDIR%\syswow64\svchost.exe' -k netsvcs
- '%WINDIR%\syswow64\ping.exe' 0.0.0.0