Техническая информация
- %HOMEPATH%\Start Menu\Programs\Startup\explorer.lnk
- '<SYSTEM32>\wscript.exe' "C:\Logs\Start.vbs"
- '<SYSTEM32>\wscript.exe' "C:\Logs\Go.vbs"
- '<SYSTEM32>\wscript.exe' "C:\Logs\Hide.vbs"
- '<SYSTEM32>\findstr.exe' /i "srvan.exe"
- '<SYSTEM32>\attrib.exe' C:\Logs\*.* +H /S /D
- '<SYSTEM32>\cmd.exe' /c ""C:\Logs\Start.bat" "
- '<SYSTEM32>\tasklist.exe' /NH
- '<SYSTEM32>\cmd.exe' /c ""C:\Logs\Hide.bat" "
- '<SYSTEM32>\cmd.exe' /c ""C:\Logs\Go.bat" "
- '<SYSTEM32>\attrib.exe' C:\Logs +H /S /D
- C:\Logs\cpu_tromp_AVX.dll
- C:\Logs\cpu_tromp_SSE2.dll
- C:\Logs\Start.bat
- C:\Logs\Start.vbs
- C:\Logs\cuda_tromp_75.dll
- C:\Logs\1.bat
- C:\Logs\cuda_djezo.dll
- C:\Logs\cuda_tromp.dll
- C:\Logs\srvan.exe
- C:\Logs\cudart64_75.dll
- C:\Logs\cudart64_80.dll
- C:\Logs\cudart32_75.dll
- C:\Logs\cudart32_80.dll
- C:\Logs\Hide.bat
- C:\Logs\Hide.vbs
- C:\Logs\Go.bat
- C:\Logs\Go.vbs
- C:\Logs\cuda_tromp_75.dll
- C:\Logs\Go.vbs
- C:\Logs\cuda_djezo.dll
- C:\Logs\cuda_tromp.dll
- C:\Logs\Start.bat
- C:\Logs\Start.vbs
- C:\Logs\Hide.vbs
- C:\Logs\srvan.exe
- C:\Logs\cudart64_80.dll
- C:\Logs\1.bat
- C:\Logs\cpu_tromp_AVX.dll
- C:\Logs\Go.bat
- C:\Logs\Hide.bat
- C:\Logs\cudart32_80.dll
- C:\Logs\cudart64_75.dll
- C:\Logs\cpu_tromp_SSE2.dll
- C:\Logs\cudart32_75.dll
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'EDIT' WindowName: ''