Техническая информация
- %WINDIR%\ArunTMP\cmd.exe /C reg add HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Windows\ /v ErrorMode /t REG_DWORD /d 2 /f
- %WINDIR%\ArunTMP\arun.exe
- %WINDIR%\regedit.exe /s %WINDIR%\ArunTMP\data.tmp
- <SYSTEM32>\reg.exe add HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Windows\ /v ErrorMode /t REG_DWORD /d 2 /f
- %WINDIR%\ArunTMP\taskkill.exe
- %WINDIR%\ArunTMP\delete.bat
- %WINDIR%\data.tmp
- %WINDIR%\ArunTMP\cmd.exe
- %TEMP%\$inst\temp_0.tmp
- %TEMP%\$inst\2.tmp
- %WINDIR%\ArunTMP\attrib.exe
- %WINDIR%\ArunTMP\arun.exe
- %TEMP%\$inst\temp_0.tmp
- <DRIVERS>\etc\hosts
- ClassName: 'RegEdit_RegEdit' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''