Техническая информация
- '<SYSTEM32>\svchost.exe' -k netsvcs
- %WINDIR%\Explorer.EXE
- %TEMP%\~TM8141.tmp
- %TEMP%\~TM80C4.tmp
- %TEMP%\~TM80C3.tmp
- %TEMP%\~TM825A.tmp
- %TEMP%\~TM821B.tmp
- %TEMP%\~TM819F.tmp
- %TEMP%\~TM7FEA.tmp
- %TEMP%\~TM7F7C.tmp
- %TEMP%\~TM7EA1.tmp
- %APPDATA%\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\netgya32.exe
- %TEMP%\~TM15258.TMP
- %APPDATA%\Roaming\avdrn.dat
- %APPDATA%\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\netgya32.exe
- %TEMP%\~TM819F.tmp
- %TEMP%\~TM8141.tmp
- %TEMP%\~TM80C4.tmp
- %TEMP%\~TM825A.tmp
- %TEMP%\~TM821B.tmp
- %TEMP%\~TM7F7C.tmp
- %TEMP%\~TM7EA1.tmp
- %TEMP%\~TM7FEA.tmp
- %TEMP%\~TM80C3.tmp
- %TEMP%\~TM15258.TMP
- DNS ASK ba##ail.ru