Техническая информация
- <SYSTEM32>\tasks\adobe flash player
- %LOCALAPPDATA%\microsoft\windows\gameexplorer\infdefaultinstall.exe
- %LOCALAPPDATA%\microsoft\windows\gameexplorer\makecab.exe
- %LOCALAPPDATA%\microsoft\windows\gameexplorer\lodctr.exe
- %LOCALAPPDATA%\microsoft\windows\gameexplorer\lsasrv.dll
- %LOCALAPPDATA%\microsoft\windows\gameexplorer\kbdnec.dll
- %LOCALAPPDATA%\microsoft\windows\gameexplorer\kbdne.dll
- <Текущая директория>\socialclub.exe
- %LOCALAPPDATA%\microsoft\windows\gameexplorer\infdefaultinstall.exe
- %LOCALAPPDATA%\microsoft\windows\gameexplorer\makecab.exe
- %LOCALAPPDATA%\microsoft\windows\gameexplorer\lodctr.exe
- %LOCALAPPDATA%\microsoft\windows\gameexplorer\lsasrv.dll
- 'gi##ub.com':443
- 'gi#############on-release-asset-2e65be.s3.amazonaws.com':443
- DNS ASK gi##ub.com
- DNS ASK gi#############on-release-asset-2e65be.s3.amazonaws.com
- ClassName: 'msctls_updown32' WindowName: ''
- '%LOCALAPPDATA%\microsoft\windows\gameexplorer\infdefaultinstall.exe'
- '<Текущая директория>\socialclub.exe'
- '<SYSTEM32>\schtasks.exe' /create /sc MINUTE /mo 30 /tn "Adobe Flash Player" /tr "%LOCALAPPDATA%\Microsoft\Windows\GameExplorer\makecab.exe" /f' (со скрытым окном)
- '<SYSTEM32>\schtasks.exe' /create /sc MINUTE /mo 30 /tn "Adobe Flash Player" /tr "%LOCALAPPDATA%\Microsoft\Windows\GameExplorer\makecab.exe" /f