Техническая информация
- '<SYSTEM32>\wscript.exe' "%ProgramFiles%\java\install.vbs"
- '<SYSTEM32>\cmd.exe' /c ""%ProgramFiles%\java\install.bat" "
- 'C:\program\blokada.exe'
- '<SYSTEM32>\taskkill.exe' /f /im rfusclient.exe
- '<SYSTEM32>\taskkill.exe' /f /im rutserv.exe
- '<SYSTEM32>\cmd.exe' /c ""%ProgramFiles%\java\1.bat" "
- '%ProgramFiles%\java\Injected.EXE'
- '%ProgramFiles%\java\blokada.sfx.exe' -p123 -d%ProgramFiles%\java
- '%TEMP%\cetrainers\CET1.tmp\Injected.EXE' -ORIGIN:"%ProgramFiles%\java\"
- %ProgramFiles%\java\install.vbs
- %ProgramFiles%\java\regedit.reg
- %TEMP%\cetrainers\CET1.tmp\extracted\lua53-64.dll
- %ProgramFiles%\java\install.bat
- %ProgramFiles%\java\vp8decoder.dll
- %ProgramFiles%\java\vp8encoder.dll
- %ProgramFiles%\java\rfusclient.exe
- %ProgramFiles%\java\rutserv.exe
- C:\program\blokada.exe
- %ProgramFiles%\java\Injected.EXE
- %TEMP%\cetrainers\CET1.tmp\CET_Archive.dat
- %ProgramFiles%\java\1.bat
- %ProgramFiles%\java\blokada.sfx.exe
- %TEMP%\cetrainers\CET1.tmp\extracted\defines.lua
- %TEMP%\cetrainers\CET1.tmp\extracted\Injected.EXE
- %TEMP%\cetrainers\CET1.tmp\Injected.EXE
- %TEMP%\cetrainers\CET1.tmp\extracted\CET_TRAINER.CETRAINER
- %TEMP%\cetrainers\CET1.tmp\extracted\lua53-64.dll
- %TEMP%\cetrainers\CET1.tmp\Injected.EXE
- %TEMP%\cetrainers\CET1.tmp\CET_Archive.dat
- %TEMP%\cetrainers\CET1.tmp\extracted\CET_TRAINER.CETRAINER
- %TEMP%\cetrainers\CET1.tmp\extracted\defines.lua
- %TEMP%\cetrainers\CET1.tmp\extracted\Injected.EXE
- ClassName: '' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'EDIT' WindowName: ''