Техническая информация
- '%TEMP%\kick_me.exe'
- '%WINDIR% Update\Interface Manager.exe'
- 'C:\Settings\HذXeдة.exe'
- '%WINDIR%\Microsoft.NET\Framework\v2.0.50727\cvtres.exe' /NOLOGO /READONLY /MACHINE:IX86 "/OUT:%TEMP%\RESA90B.tmp" "%TEMP%\vbcA8CC.tmp"
- '%WINDIR%\Microsoft.NET\Framework\v2.0.50727\vbc.exe' /noconfig @"%TEMP%\dzvy5ajy.cmdline"
- %WINDIR% Update\setting\guide.txt
- %WINDIR% Update\setting\power.txt
- %WINDIR% Update\data\111.exe
- %WINDIR% Update\info.txt
- %TEMP%\kill_it.txt
- %APPDATA%\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Configuration.lnk
- %WINDIR% Update\setting\gap.txt
- %TEMP%\kick_me.exe
- %WINDIR% Update\sign231.txt
- %TEMP%\dzvy5ajy.cmdline
- %TEMP%\dzvy5ajy.out
- <Текущая директория>\temp_code.txt
- %TEMP%\dzvy5ajy.0.vb
- C:\Settings\HذXeдة.exe
- %WINDIR% Update\Interface Manager.exe
- %TEMP%\vbcA8CC.tmp
- %TEMP%\RESA90B.tmp
- %TEMP%\dzvy5ajy.out
- %TEMP%\dzvy5ajy.cmdline
- C:\Settings\HذXeдة.exe
- %TEMP%\RESA90B.tmp
- %TEMP%\vbcA8CC.tmp
- %TEMP%\dzvy5ajy.0.vb
- DNS ASK dn#.##ftncsi.com
- DNS ASK www.google.com
- ClassName: 'Shell_TrayWnd' WindowName: ''