Техническая информация
- %TEMP%\is-PMM95.tmp\cfОПЕЈНёКУ.tmp /SL5="$100FE,53248,53248,%TEMP%\cfОПЕЈНёКУ.exe"
- %TEMP%\ОПЕЈНёКУ.exe
- %TEMP%\cfОПЕЈНёКУ.exe
- <SYSTEM32>\taskkill.exe /f /im empty.dat
- <SYSTEM32>\regsvr32.exe <SYSTEM32>\shdocvw.dll /s
- %TEMP%\is-L00GJ.tmp\riRgxCDW.dat
- %TEMP%\is-L00GJ.tmp\_isetup\_shfoldr.dll
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\13-3[1].txt
- %TEMP%\RGI2.tmp
- %TEMP%\is-L00GJ.tmp\_isetup\_RegDLL.tmp
- %TEMP%\ОПЕЈНёКУ.exe
- %TEMP%\cfОПЕЈНёКУ.exe
- %TEMP%\is-PMM95.tmp\cfОПЕЈНёКУ.tmp
- %TEMP%\RGI2.tmp
- 'www.cf##niu.com':80
- 'localhost':1037
- www.cf##niu.com/edition-validate/11/01/13-3.txt
- DNS ASK www.cf##niu.com
- '61.#91.63.9':8901
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: '' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''