Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'v.exe' = '<SYSTEM32>\v.exe'
- <SYSTEM32>\reg.exe add "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" /v "v.exe" /t REG_SZ /d "<SYSTEM32>\v.exe" /f
- <SYSTEM32>\cmd.exe /c ""%TEMP%\1.tmp\v.bat""
- <DRIVERS>\etc\drivers15
- <DRIVERS>\etc\drivers16
- <DRIVERS>\etc\drivers17
- <DRIVERS>\etc\drivers12
- <DRIVERS>\etc\drivers13
- <DRIVERS>\etc\drivers14
- <DRIVERS>\etc\drivers18
- <DRIVERS>\etc\drivers22
- <DRIVERS>\etc\drivers23
- <Текущая директория>\4uTau!!!.txt
- <DRIVERS>\etc\drivers19
- <DRIVERS>\etc\drivers20
- <DRIVERS>\etc\drivers21
- <DRIVERS>\etc\drivers2
- <DRIVERS>\etc\drivers3
- <DRIVERS>\etc\drivers4
- %TEMP%\1.tmp\v.bat
- <SYSTEM32>\v.exe
- <DRIVERS>\etc\drivers1
- <DRIVERS>\etc\drivers5
- <DRIVERS>\etc\drivers9
- <DRIVERS>\etc\drivers10
- <DRIVERS>\etc\drivers11
- <DRIVERS>\etc\drivers6
- <DRIVERS>\etc\drivers7
- <DRIVERS>\etc\drivers8
- %TEMP%\1.tmp\v.bat