Техническая информация
- '%WINDIR%\Temp\{4BE02C90-FA5B-4FF5-BC0A-1CC7DB3C1A9D}.exe' -p8grfd@# -d"%WINDIR%\Temp\" -s
- '%WINDIR%\Temp\Main.exe'
- '%WINDIR%\Temp\Temp.exe'
- '%TEMP%\RarSFX0\Setup.exe'
- '%WINDIR%\Temp\{ABCB4A5C-E860-426D-A276-D56FE4966490}.exe' -p%$#%gafE -d"%WINDIR%\Temp\" -s
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- %WINDIR%\Temp\Download.dll
- %WINDIR%\Temp\Main.exe
- %TEMP%\sidrunet.tid
- %WINDIR%\Temp\Execute.dll
- %WINDIR%\Temp\{ABCB4A5C-E860-426D-A276-D56FE4966490}.exe
- %TEMP%\RarSFX0\Setup.exe
- %WINDIR%\Temp\{4BE02C90-FA5B-4FF5-BC0A-1CC7DB3C1A9D}.exe
- %WINDIR%\Temp\Temp.exe
- %TEMP%\RarSFX0\Setup.exe
- %WINDIR%\Temp\{4BE02C90-FA5B-4FF5-BC0A-1CC7DB3C1A9D}.exe
- %WINDIR%\Temp\{ABCB4A5C-E860-426D-A276-D56FE4966490}.exe
- 'st#.#ndwn.cn':80
- st#.#ndwn.cn/log/ver.asp?ID#####
- DNS ASK st#.#ndwn.cn
- ClassName: 'MS_WINHELP' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'EDIT' WindowName: ''