Техническая информация
- %WINDIR%\Tasks\Acrobat Update.job
- %TEMP%\svhost.exe
- %TEMP%\chdman.exe
- %TEMP%\setuper.exe
- %TEMP%\setupwin.exe
- <SYSTEM32>\cmd.exe /c ""%TEMP%\2.tmp\test.bat" "
- <SYSTEM32>\cmd.exe /c ""%TEMP%\1.tmp\test.bat" "
- %TEMP%\chdman.exe
- %TEMP%\1.tmp\test.bat
- %TEMP%\2.tmp\test.bat
- %TEMP%\setuper.exe
- %TEMP%\setupwin.exe
- %TEMP%\svhost.exe
- %WINDIR%\Tasks\Acrobat Update.job
- %TEMP%\2.tmp\test.bat
- %TEMP%\1.tmp\test.bat
- 'www.gu##man.cn':80
- www.gu##man.cn/x/re.php?ve###################
- DNS ASK www.gu##man.cn
- '<IP-адрес в локальной сети>':1037
- ClassName: 'Shell_TrayWnd' WindowName: ''