Техническая информация
- '%TEMP%\2345explorer_343902.exe' (загружен из сети Интернет)
- '%TEMP%\2345explorer_343902.exe' /S
- '<SYSTEM32>\ping.exe' 127.0.0.1 -n 10
- '<SYSTEM32>\cacls.exe' "C:\Documents and Settings\UInternet Explorer\Quick Launch\User Pinned\TaskBar" /e /c /d everyone
- '<SYSTEM32>\cacls.exe' "C:\Documents and Settings\UInternet Explorer\Quick Launch\User Pinned\TaskBar" /e /c /g everyone:f
- '<SYSTEM32>\cmd.exe' /c ping 127.0.0.1 -n 10 &del "<Полный путь к вирусу>"&echo y|cacls "C:\Documents and Settings\UInternet Explorer\Quick Launch\User Pinned\TaskBar" /e /c /d everyone
- '%ProgramFiles%\47031.exe'
- '<SYSTEM32>\cmd.exe' /c echo y|cacls "%APPDATA%\2345Soft" /e /c /g everyone:f&echo y|cacls "C:\Documents and Settings\UInternet Explorer\Quick Launch\User Pinned\TaskBar" /e /c /g everyone:f
- '<SYSTEM32>\cacls.exe' "%APPDATA%\2345Soft" /e /c /g everyone:f
- '<SYSTEM32>\cmd.exe' /S /D /c" echo y"
- <Текущая директория>\У°КУґуИ«.lnk
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\2345explorer_343902[1].41
- %TEMP%\2345explorer_343902.exe
- %ProgramFiles%\4703.exe
- C:\ЕдЦГПо.ini
- %ProgramFiles%\47031.exe
- %APPDATA%\2345Soft\2345Movie\2345Movie.ini
- %APPDATA%\2345Soft\2345Movie\2345Movie.ini
- %TEMP%\2345explorer_343902.exe
- 'do####ad.2345.cn':80
- http://do####ad.2345.cn/background/2345explorer_343902.exe?18######
- DNS ASK do####ad.2345.cn
- ClassName: 'Shell_TrayWnd' WindowName: ''