Техническая информация
- <SYSTEM32>\cmd.exe /c ""C:\credi.bat""
- %HOMEPATH%\Desktop\Internet Explorer.lnk
- %APPDATA%\Microsoft\Internet Explorer\Quick Launch\Internet Explorer.lnk
- %HOMEPATH%\Start Menu\Programs\Internet Explorer.lnk
- %HOMEPATH%\Internet Explorer.lnk
- C:\credi.txt
- C:\lazer.gif
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\cnrgw[1].gif
- <DRIVERS>\etc\lmhosts
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\readme[1].txt
- <DRIVERS>\etc\lmhosts
- %HOMEPATH%\Desktop\Internet Explorer.lnk
- C:\credi.bat
- C:\lazer.gif
- <DRIVERS>\etc\hosts
- <DRIVERS>\etc\lmhosts.sam
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\readme[1].txt
- '21#.#2.83.130':8081
- '21#.#2.83.130':80
- 'localhost':1035
- 21#.#2.83.130/images/data/readme.txt
- 21#.#2.83.130/data/cnrgw.gif
- ClassName: 'Shell_TrayWnd' WindowName: ''