Техническая информация
- '<Текущая директория>\MainPro.exe'
- '<SYSTEM32>\regsvr32.exe' /s "%TEMP%\~DFA870.tmp"
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- '<SYSTEM32>\regsvr32.exe' /s "<SYSTEM32>\mswinsck.ocx"
- '<SYSTEM32>\regsvr32.exe' /s "%TEMP%\~DFA3326.tmp"
- %TEMP%\~DFA3326.tmp
- <SYSTEM32>\mswinsck.ocx
- %TEMP%\DFA9773.tmp
- %TEMP%\~DFA870.tmp
- %TEMP%\6837.dat
- %WINDIR%\sys.dat
- <SYSTEM32>\mkfok.exebak
- <Текущая директория>\MainPro.exe
- <SYSTEM32>\mkfok.exe
- %TEMP%\DFA9773.tmp
- %TEMP%\6837.dat
- <SYSTEM32>\mkfok.exebak
- %WINDIR%\sys.dat
- 'www.v3##.net':80
- 'www.v1##.net':80
- 'us##.yswm.net':80
- 'www.ah##.net':80
- 'localhost':1038
- 'www.zg##.net':80
- 'www.ys##.net':80
- 'www.pc##8.net':80
- www.v3##.net/file.txt
- www.v1##.net/file.txt
- us##.yswm.net/yswm/hfyw.ini
- www.ah##.net/file.txt
- www.zg##.net/ahjw-hfyw.exe
- www.zg##.net/ahjw-hfyw.txt
- www.ys##.net/file.txt
- www.pc##8.net/file.txt
- DNS ASK www.v3##.net
- DNS ASK www.v1##.net
- DNS ASK us##.yswm.net
- DNS ASK www.ah##.net
- DNS ASK www.zg##.net
- DNS ASK www.pc##8.net
- DNS ASK www.ys##.net
- '10.##5.255.255':26010
- ClassName: 'Progman' WindowName: 'Program Manager'
- ClassName: '' WindowName: 'AnnxePro'
- ClassName: 'Shell_TrayWnd' WindowName: ''