Техническая информация
- '%PROGRAM_FILES%\5566\105.exe'
- '%WINDIR%\regedit.exe' /s start.reg
- '%WINDIR%\regedit.exe' /s id.reg
- '<SYSTEM32>\cmd.exe' /c ""%PROGRAM_FILES%\5566\run.cmd" "
- ClassName: 'RegMonClass' WindowName: ''
- ClassName: 'FileMonClass' WindowName: ''
- %PROGRAM_FILES%\5566\start.reg
- %PROGRAM_FILES%\5566\run.cmd
- %APPDATA%\Microsoft\Internet Explorer\Quick Launch\Internet Explorer.url
- %TEMP%\64788B92.TMP
- %PROGRAM_FILES%\5566\沈园导航.url
- %PROGRAM_FILES%\5566\105.exe
- %PROGRAM_FILES%\5566\ID.reg
- %PROGRAM_FILES%\5566\Internet Explorer.url
- %PROGRAM_FILES%\5566\run.cmd
- %PROGRAM_FILES%\5566\start.reg
- %PROGRAM_FILES%\5566\ID.reg
- ClassName: 'RegEdit_RegEdit' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'EDIT' WindowName: ''