Техническая информация
- '<SYSTEM32>\cmd.exe' /S /D /c" echo y"
- '<SYSTEM32>\cacls.exe' "%HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\WPIBGDIJ\ssygyx[1].dll" /d everyone
- '<SYSTEM32>\cacls.exe' "%TEMP%\ssygyx\ssygyx.dll" /d everyone
- '<SYSTEM32>\cmd.exe' /c ""%WINDIR%\java\classes\ops\nebar.BAT" "
- '<SYSTEM32>\attrib.exe' %WINDIR%\Temp\test.bat +h +s +r
- '<SYSTEM32>\cacls.exe' "%WINDIR%\Temp\test.bat" /e /t /d everyone
- %WINDIR%\java\classes\ops\pub\xhyzzzb\cqby1258\index.html
- %WINDIR%\java\classes\ops\pub\201504271612054106\index.html
- %WINDIR%\java\classes\ops\go.html
- %WINDIR%\java\classes\ops\fg2.reg
- %WINDIR%\java\classes\ops\fg1.reg
- %WINDIR%\java\classes\ops\index.html
- %WINDIR%\java\classes\ops\s\1\1777\38312.html
- %WINDIR%\java\classes\ops\www.sohu.com\new2016newnew.htm
- %WINDIR%\java\classes\ops\111.htm
- %WINDIR%\java\classes\ops\nebar.BAT
- %WINDIR%\java\classes\ops\game\cqss\356344\356344-233344.html
- %WINDIR%\java\classes\ops\选择最佳线路.htm
- %WINDIR%\java\classes\ops\tiaozhuan.htm
- %WINDIR%\java\classes\ops\pub\201504271612054106\index.html
- %WINDIR%\java\classes\ops\go.html
- %WINDIR%\java\classes\ops\index.html
- %WINDIR%\java\classes\ops\pub\xhyzzzb\cqby1258\index.html
- %WINDIR%\java\classes\ops\s\1\1777\38312.html
- %WINDIR%\java\classes\ops\tiaozhuan.htm
- %WINDIR%\java\classes\ops\111.htm
- %WINDIR%\java\classes\ops\game\cqss\356344\356344-233344.html
- %WINDIR%\java\classes\ops\选择最佳线路.htm