Техническая информация
- '%WINDIR%\Fox.exe' /shtml %WINDIR%\2k\SEyS.html
- '%WINDIR%\Fox.exe' /stext %WINDIR%\2k\Chrome\Fox.txt
- '%WINDIR%\Update.exe' /stext %WINDIR%\2k\Chrome\Chm.txt
- '%WINDIR%\Load.exe'
- '%WINDIR%\Update.exe' /shtml %WINDIR%\2k\Chm.html
- '<SYSTEM32>\reg.exe' add HKLM\SYSTEM\CurrentControlSet\services\Tcpip\Parameters /v Hostname /d Z1 /f
- '<SYSTEM32>\wbem\wmic.exe' shadowcopy delete
- '<SYSTEM32>\reg.exe' add HKLM\SYSTEM\CurrentControlSet\services\Tcpip\Parameters /v Hostname /d Z1 /f
- '<SYSTEM32>\reg.exe' add HKLM\SYSTEM\CurrentControlSet\services\Tcpip\Parameters /v "NV Hostname" /d Z1 /f
- ClassName: 'OLLYDBG' WindowName: ''
- %WINDIR%\2k\tmp\SET8.tmp
- %WINDIR%\2k\tmp\SET4.tmp
- %WINDIR%\2k\tmp\SET3.tmp
- %WINDIR%\2k\log.bin
- %TEMP%\tmp1.tmp
- %WINDIR%\ReportFile.zip
- %WINDIR%\2k\Chrome\Fox.txt
- %WINDIR%\Update.exe
- %WINDIR%\Fox.exe
- %WINDIR%\Load.exe
- %WINDIR%\2k\SEyS.html
- %WINDIR%\2k\Chrome\Chm.txt
- %WINDIR%\2k\Chm.html