Техническая информация
- %TEMP%\.exe
- <SYSTEM32>\net.exe stop w32time
- <SYSTEM32>\net1.exe stop w32time
- <SYSTEM32>\taskkill.exe /f /im safesurf.exe
- <SYSTEM32>\cmd.exe /c ""%TEMP%\1.tmp\!.bat" "
- <SYSTEM32>\cscript.exe //b //nologo start.vbs
- %WINDIR%\explorer.exe
- %TEMP%\temp1.tmp
- %TEMP%\inst.bat
- %TEMP%\build.bat
- %TEMP%\w32time_32.reg
- %TEMP%\start.vbs
- %TEMP%\1.tmp\!.bat
- %TEMP%\w32time_64.reg
- %TEMP%\builder.exe
- %TEMP%\Autorun.exe
- %TEMP%\.exe
- %TEMP%\evntstart.exe
- %TEMP%\.bat
- %TEMP%\temp1\temporary1.tmp
- %TEMP%\w32time.exe
- %TEMP%\1.tmp\!.bat
- %TEMP%\start.vbs
- ClassName: '' WindowName: ''