Техническая информация
- скрытых файлов
- <SYSTEM32>\attrib.exe -h -r -s ie.exe
- <SYSTEM32>\attrib.exe -h -r -s autorun.vbs
- <SYSTEM32>\attrib.exe -h -r -s WSscript.exe
- <SYSTEM32>\attrib.exe -h -r -s copy.exe
- <SYSTEM32>\attrib.exe -h -r -s command.exe
- <SYSTEM32>\attrib.exe -h -r -s msvcr71.dll
- <SYSTEM32>\attrib.exe -h -r -s activexdebugger32.exe
- <SYSTEM32>\attrib.exe -h -r -s amvo.exe
- <SYSTEM32>\attrib.exe -h -r -s amvo0.dll
- <SYSTEM32>\attrib.exe -h -r -s r6r.exe
- <SYSTEM32>\attrib.exe -h -r -s l2f.cmd
- <SYSTEM32>\attrib.exe -h -r -s yp.bat
- <SYSTEM32>\taskkill.exe /im wscript.exe
- <SYSTEM32>\taskkill.exe /im activexdebugger32.exe /f
- <SYSTEM32>\reg.exe add HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\EXplorer\Advanced /v ShowSuperHidden /t REG_DWORD /d 1 /f
- <SYSTEM32>\cmd.exe /c """%TEMP%\Untitled3.bat"""
- <SYSTEM32>\taskkill.exe /im explorer.exe /f
- <SYSTEM32>\taskkill.exe /im bittorrent.exe /f
- <SYSTEM32>\attrib.exe -h -r -s autorun.inf
- <SYSTEM32>\attrib.exe -h -r -s bittorrent.exe
- <SYSTEM32>\attrib.exe -h -r -s sxs.exe
- <SYSTEM32>\reg.exe add HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\EXplorer\Advanced /v Hidden /t REG_DWORD /d 1 /f
- <SYSTEM32>\reg.exe import kill.reg
- <SYSTEM32>\attrib.exe -h -r -s fooool.exe
- %WINDIR%\Explorer.EXE
- %TEMP%\Untitled3.bat
- ClassName: '' WindowName: ''