Техническая информация
- '%WINDIR%\Temp\{3EEA3B94-1BE1-4CF8-82B4-407B9275EB96}.exe' -p8grfd@# -d"%WINDIR%\Temp\" -s
- '%WINDIR%\Temp\Main.exe'
- '%WINDIR%\Temp\Temp.exe'
- '%TEMP%\RarSFX0\Setup.exe'
- '%WINDIR%\Temp\{C00C2AA9-B14B-4D54-9C2B-33EC1CB6A100}.exe' -p%$#%gafE -d"%WINDIR%\Temp\" -s
- %WINDIR%\Temp\Download.dll
- %WINDIR%\Temp\Main.exe
- %TEMP%\sidrunet.tid
- %WINDIR%\Temp\Execute.dll
- %WINDIR%\Temp\{C00C2AA9-B14B-4D54-9C2B-33EC1CB6A100}.exe
- %TEMP%\RarSFX0\Setup.exe
- %WINDIR%\Temp\{3EEA3B94-1BE1-4CF8-82B4-407B9275EB96}.exe
- %WINDIR%\Temp\Temp.exe
- %TEMP%\RarSFX0\Setup.exe
- %WINDIR%\Temp\{3EEA3B94-1BE1-4CF8-82B4-407B9275EB96}.exe
- %WINDIR%\Temp\{C00C2AA9-B14B-4D54-9C2B-33EC1CB6A100}.exe
- 'st#.#ndwn.cn':80
- st#.#ndwn.cn/log/ver.asp?ID#####
- DNS ASK st#.#ndwn.cn
- ClassName: 'MS_WINHELP' WindowName: '(null)'
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: 'EDIT' WindowName: '(null)'