Техническая информация
- %HOMEPATH%\Start Menu\Programs\Startup\explorer.lnk
- '<SYSTEM32>\wscript.exe' "C:\ProgramData\Windows\svchost.VBS"
- 'C:\ProgramData\Windows\install.exe'
- 'C:\ProgramData\Windows\install.sfx.exe' -p123 -dC:\ProgramData\Windows
- '<SYSTEM32>\cmd.exe' /c ""C:\ProgramData\Windows\file.bat" "
- C:\ProgramData\Windows\Data.bin
- C:\ProgramData\Windows\epools.txt
- C:\ProgramData\Windows\1511184789_log.txt
- C:\ProgramData\Windows\config.txt
- C:\ProgramData\Windows\msvcr110.dll
- C:\ProgramData\Windows\Readme!!!.txt
- C:\ProgramData\Windows\History.txt
- C:\ProgramData\Windows\License.txt
- C:\ProgramData\Windows\install.exe
- C:\ProgramData\Windows\svchost.vbs
- C:\ProgramData\Windows\file.bat
- C:\ProgramData\Windows\install.sfx.exe
- C:\ProgramData\Windows\Remote manager\EthMan.exe
- C:\ProgramData\Windows\Remote manager\sample.bat
- C:\ProgramData\Windows\csrs.exe
- C:\ProgramData\Windows\start.bat
- ClassName: 'EDIT' WindowName: ''