Техническая информация
- <SYSTEM32>\cacls.exe "%HOMEPATH%\Desktop\??????.url" /p everyone:f
- <SYSTEM32>\cacls.exe "%HOMEPATH%\Desktop\??????.url" /p everyone:R
- <SYSTEM32>\cacls.exe "%HOMEPATH%\Desktop\????.url" /p everyone:f
- <SYSTEM32>\cacls.exe "%HOMEPATH%\Desktop\????.url" /p everyone:R
- %APPDATA%\icon\mmchat.ico
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\0D6B6PI5\123.7dwg[1]
- %APPDATA%\icon\film.ico
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\ULU3YH2D\4829458[1].js
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\CAS12345.asp
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\4829458[1].js
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\0D6B6PI5\4829458[1].js
- %APPDATA%\icon\taobao.ico
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\ULU3YH2D\4829458[1].js
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\0D6B6PI5\4829458[1].js
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\4829458[1].js
- 'localhost':1039
- '12#.#dwg.com':80
- 'js.##ers.51.la':80
- 'localhost':1034
- '2x###l.7moo.com':80
- 12#.#dwg.com/
- js.##ers.51.la/4829458.js
- DNS ASK c.###e55.com
- DNS ASK 12#.#dwg.com
- DNS ASK 2x###l.7moo.com
- DNS ASK js.##ers.51.la
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: '#32770' WindowName: '????'
- ClassName: 'IEFrame' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: '#32770' WindowName: ''
- ClassName: '' WindowName: ''