Техническая информация
- '<SYSTEM32>\taskhost.exe' $(Arg0)
- '<SYSTEM32>\wermgr.exe' -queuereporting
- '<SYSTEM32>\cmd.exe' /c ""%TEMP%\91C3.tmp\1.bat" "
- '<SYSTEM32>\rundll32.exe' url.dll,FileProtocolHandler http://fo###.expw.net/threads/phoenix-1-4-6.17540/#post-392413
- <Текущая директория>\js.log
- %APPDATA%\Roaming\Mozilla\Firefox\Profiles\zp7tnb55.default\localstore-1.rdf
- %TEMP%\91C3.tmp\1.bat
- %APPDATA%\Roaming\Mozilla\Firefox\Profiles\zp7tnb55.default\prefs-1.js
- %TEMP%\91C3.tmp\1.bat
- %APPDATA%\Roaming\Mozilla\Firefox\Profiles\zp7tnb55.default\prefs-1.js в %APPDATA%\Roaming\Mozilla\Firefox\Profiles\zp7tnb55.default\prefs.js
- 'localhost':49158
- ClassName: 'FirefoxMessageWindow' WindowName: ''