Техническая информация
- '<SYSTEM32>\fvdnotify.exe'
- '%WINDIR%\ehome\eventkey.exe'
- '%WINDIR%\ehome\mediahost.exe'
- '%WINDIR%\Microsoft.NET\NETFX.exe'
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- '<SYSTEM32>\schtasks.exe' /create /sc daily /du 05:00 /ri 15 /f /tn "Microsoft\Windows\Location\splwow86" /tr "%WINDIR%\splwow86.exe"
- '<SYSTEM32>\schtasks.exe' /create /sc daily /du 04:00 /ri 10 /f /tn "Microsoft\Windows\Multimedia\mediahost" /tr "%WINDIR%\ehome\mediahost.exe"
- %TEMP%\config_content2.sec
- %PROGRAM_FILES%\module\0.txt
- %WINDIR%\ehome\eventkey.exe
- %TEMP%\links2.sec
- %TEMP%\log_DFsdeDFGs.txt
- %TEMP%\eventkey.bat
- %WINDIR%\Microsoft.NET\NETFX.exe
- %WINDIR%\splwow86.exe
- %WINDIR%\ehome\mediahost.exe
- <SYSTEM32>\LocationNotification.exe
- <SYSTEM32>\fvdnotify.exe
- %WINDIR%\Microsoft.NET\Framework\NETFXSBS.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\config_content2[1].sec
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\2VAZY7AN\links2[1].sec
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\config_content2[1].sec
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\links2[1].sec
- 'sm#.#yftp.org':80
- sm#.#yftp.org/links/links2.sec
- sm#.#yftp.org/links/config_content2.sec
- DNS ASK sm#.#yftp.org
- DNS ASK www.google.com
- ClassName: 'Shell_TrayWnd' WindowName: ''