Техническая информация
- 'C:\103.exe' /f:"%HOMEPATH%\Desktop\..\Application Data\Microsoft\Internet Explorer\Quick Launch\Internet Explorer.lnk" /a:c /t:"%PROGRAM_FILES%\Internet Explorer\IEXPLORE.EXE" /p:"http://www.65##0.cn/?00#"
- 'C:\103.exe' /f:"%HOMEPATH%\Start Menu\Internet Explorer.lnk" /a:c /t:"%PROGRAM_FILES%\Internet Explorer\IEXPLORE.EXE" /p:"http://www.65##0.cn/?00#"
- 'C:\103.exe' /f:"%HOMEPATH%\Desktop\Internet Explorer.lnk" /a:c /t:"%PROGRAM_FILES%\Internet Explorer\IEXPLORE.EXE" /p:"http://www.65##0.cn/?00#"
- 'C:\103.exe' /f:"%HOMEPATH%\Start Menu\Programs\Internet Explorer.lnk" /a:c /t:"%PROGRAM_FILES%\Internet Explorer\IEXPLORE.EXE" /p:"http://www.65##0.cn/?00#"
- '%WINDIR%\explorer.exe' http://www.ke##n.net/005.html
- '<SYSTEM32>\cmd.exe' /c c:\bbb111.bat
- %HOMEPATH%\Start Menu\Programs\Internet Explorer.lnk
- %HOMEPATH%\Desktop\Internet Explorer.lnk
- C:\bbb111.bat
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\005[1].html
- %HOMEPATH%\Start Menu\Internet Explorer.lnk
- %APPDATA%\Microsoft\Internet Explorer\Quick Launch\Internet Explorer.lnk
- %WINDIR%\Fonts\102.aaa
- %WINDIR%\Fonts\101.ico
- %WINDIR%\Fonts\101.aaa
- C:\103.exe
- C:\103.aaa
- %WINDIR%\Fonts\102.ico
- C:\103.aaa
- C:\103.exe
- 'www.ke##n.net':80
- 'localhost':1035
- www.ke##n.net/005.html
- DNS ASK www.ke##n.net
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'Progman' WindowName: 'Program Manager'
- ClassName: '' WindowName: ''