Техническая информация
- '%ProgramFiles%\Microsoft\Microsoft.NET\Program\AudioDriver.exe'
- '%WINDIR%\Microsoft.NET\Framework\v2.0.50727\csc.exe' /noconfig /fullpaths @"%TEMP%\h4oj5qrs.cmdline"
- '%WINDIR%\Microsoft.NET\Framework\v2.0.50727\cvtres.exe' /NOLOGO /READONLY /MACHINE:IX86 "/OUT:%TEMP%\RES2.tmp" "%TEMP%\CSC1.tmp"
- '<SYSTEM32>\cmd.exe' /C move /y "%TEMP%\nothing.lnk" "%HOMEPATH%\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\utorrent.lnk"
- '%WINDIR%\Microsoft.NET\Framework\v2.0.50727\RegAsm.exe'
- %WINDIR%\Microsoft.NET\Framework\v2.0.50727\RegAsm.exe
- %TEMP%\RES2.tmp
- %TEMP%\CSC1.tmp
- %TEMP%\h4oj5qrs.dll
- %ProgramFiles%\Microsoft\Microsoft.NET\Program\AudioDriver.exe.config
- %ProgramFiles%\Microsoft\Microsoft.NET\Program\AudioDriver.exe
- C:\NMbmeeeT\jeuubkbs.exe
- %TEMP%\nothing.lnk
- %TEMP%\h4oj5qrs.0.cs
- %TEMP%\h4oj5qrs.out
- %TEMP%\h4oj5qrs.cmdline
- %TEMP%\h4oj5qrs.0.cs
- %TEMP%\h4oj5qrs.out
- %TEMP%\h4oj5qrs.cmdline
- %TEMP%\RES2.tmp
- %TEMP%\CSC1.tmp
- %TEMP%\h4oj5qrs.dll