Техническая информация
- <SYSTEM32>\taskkill.exe /f /im poolses.exe
- <SYSTEM32>\taskkill.exe /f /im taskmgres.exe
- <SYSTEM32>\taskkill.exe /f /im maxthans.exe
- <SYSTEM32>\taskkill.exe /f /im dervicas.exe
- <SYSTEM32>\taskkill.exe /f /im systems64.exe
- <SYSTEM32>\taskkill.exe /f /im winslogin.exe
- <SYSTEM32>\taskkill.exe /f /im winlogonin.exe
- <SYSTEM32>\taskkill.exe /f /im explores.exe
- <SYSTEM32>\taskkill.exe /f /im userinlt.exe
- <SYSTEM32>\taskkill.exe /f /im windew.exe
- <SYSTEM32>\cacls.exe "%PROGRAM_FILES%\barclient\corefile\core" /e /t /d %USERNAME%s
- <SYSTEM32>\cacls.exe "%PROGRAM_FILES%\barclient\corefile\core" /e /t /d "CREATOR OWNER"
- <SYSTEM32>\attrib.exe %PROGRAM_FILES%\barclient\corefile\rar +r +h +s
- <SYSTEM32>\cmd.exe /c ""%TEMP%\1.tmp\jwxf.bat" "
- <SYSTEM32>\attrib.exe %PROGRAM_FILES%\barclient\corefile\core +r +h +s
- <SYSTEM32>\cacls.exe %PROGRAM_FILES%\barclient\FormDock.exe /p %USERNAME%s:n
- <SYSTEM32>\taskkill.exe /f /im eisrais.exe
- <SYSTEM32>\cacls.exe %PROGRAM_FILES%\barclient\lookProcess.dll /p %USERNAME%s:n
- <SYSTEM32>\cacls.exe "%PROGRAM_FILES%\barclient\corefile\rar" /e /t /d %USERNAME%s
- <SYSTEM32>\cacls.exe "%PROGRAM_FILES%\barclient\corefile\rar" /e /t /d "CREATOR OWNER"
- %TEMP%\1.tmp\jwxf.bat
- %TEMP%\1.tmp\jwxf.bat
- ClassName: '' WindowName: ''