Техническая информация
- %PROGRAM_FILES%\dnf\bieshawo.exe
- %TEMP%\Temp\004.exe
- <SYSTEM32>\net.exe stop Themes
- <SYSTEM32>\net1.exe stop Themes
- <SYSTEM32>\net1.exe start Themes
- <SYSTEM32>\cmd.exe /c ""%TEMP%\Temp\DNFЙс±ш.exe.bat" "
- <SYSTEM32>\cmd.exe /c ""%TEMP%\Temp\004.exe.bat" "
- <SYSTEM32>\cmd.exe /c tr.bat
- dnf.exe
- %PROGRAM_FILES%\dnf\bieshawo.exe
- <Текущая директория>\tr.bat
- <SYSTEM32>\wahaha.ime
- %TEMP%\Temp\004.exe.bat
- %TEMP%\Temp\DNFЙс±ш.exe
- %TEMP%\Temp\004.exe
- %TEMP%\Temp\DNFЙс±ш.exe.bat
- ClassName: 'CicLoaderWndClass' WindowName: ''
- ClassName: 'TWINCONTROL' WindowName: '??????'
- ClassName: 'Shell_TrayWnd' WindowName: ''