Техническая информация
- %TEMP%\~nsu.tmp\Au_.exe _?=%TEMP%\
- %TEMP%\uninst.exe
- <SYSTEM32>\wscript.exe %TEMP%\load.vbs
- <SYSTEM32>\regsvr32.exe /s "%WINDIR%\AutoItX3.dll"
- %TEMP%\uninst.exe
- %TEMP%\temp.ini
- %TEMP%\nsz5.tmp
- %TEMP%\nsk7.tmp
- %TEMP%\~nsu.tmp\Au_.exe
- %PROGRAM_FILES%\Internet Explorer\ie.amico
- %TEMP%\nsn2.tmp
- %PROGRAM_FILES%\Internet Explorer\bk.amico
- %TEMP%\nsn3.tmp\System.dll
- %TEMP%\nsn3.tmp\InetLoad.dll
- %TEMP%\uninst.exe
- %TEMP%\temp.ini
- %TEMP%\nsn3.tmp\InetLoad.dll
- %TEMP%\nsn3.tmp\System.dll
- 'cp######.loadcode.meibu.com':8080
- DNS ASK cp######.loadcode.meibu.com
- '<IP-адрес в локальной сети>':1035
- ClassName: 'Shell_TrayWnd' WindowName: ''