Техническая информация
- %APPDATA%\Server.exe
- %APPDATA%\7za.exe "x" "-y" "%APPDATA%\Server.7z" "-pSaltyDave"
- %WINDIR%\Temp\cudssbgfsi\1.exe
- %WINDIR%\explorer.exe
- <SYSTEM32>\taskkill.exe /f /IM explorer.exe
- <SYSTEM32>\cmd.exe /c """%TEMP%\Untitled1.bat"" > NUL"
- %WINDIR%\Explorer.EXE
- %APPDATA%\Server.txt
- <Текущая директория>\server.exe
- %TEMP%\Untitled1.bat
- %APPDATA%\7za.exe
- %WINDIR%\Temp\cudssbgfsi\Adobe AIR Updater.exe
- %WINDIR%\Temp\cudssbgfsi\AdobeCollabSync.exe
- %WINDIR%\Temp\cudssbgfsi\1.exe
- ClassName: 'OleMainThreadWndClass' WindowName: ''
- ClassName: 'SysListView32' WindowName: ''
- ClassName: 'CSCHiddenWindow' WindowName: ''
- ClassName: 'SystemTray_Main' WindowName: ''
- ClassName: '' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'BaseBar' WindowName: 'ChanApp'
- ClassName: 'Proxy Desktop' WindowName: ''