Техническая информация
- %HOMEPATH%\Start Menu\Programs\Startup\explorer.lnk
- %ProgramFiles%\Windows\rar.exe
- %ProgramFiles%\Windows\db.rar
- %ProgramFiles%\Windows\gaje.bat
- %ProgramFiles%\Windows\zaijb.vbs
- %ProgramFiles%\Windows\sxboe.vbs
- %ProgramFiles%\Windows\pxqim.bat
- %ProgramFiles%\Windows\config.json
- %ProgramFiles%\Windows\build.exe
- %ProgramFiles%\Windows\zaijb.vbs
- %ProgramFiles%\Windows\rar.exe
- ClassName: 'EDIT' WindowName: ''
- '<SYSTEM32>\wscript.exe' "%ProgramFiles%\Windows\zaijb.vbs"
- '%ProgramFiles%\Windows\rar.exe' e -p2609 db.rar
- '<SYSTEM32>\wscript.exe' "%ProgramFiles%\Windows\sxboe.vbs"
- '<SYSTEM32>\cmd.exe' /c ""%ProgramFiles%\Windows\gaje.bat" "
- '<SYSTEM32>\cmd.exe' /c ""%ProgramFiles%\Windows\pxqim.bat" "
- '<SYSTEM32>\powercfg.exe' -change -standby-timeout-ac 0
- '<SYSTEM32>\cmd.exe' /c tasklist /NH /FI "IMAGENAME eq taskmgr.exe"
- '<SYSTEM32>\tasklist.exe' /NH /FI "IMAGENAME eq taskmgr.exe"