Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'GoogleUpdater' = '%WINDIR%\kol.bat'
- Диспетчера задач (Taskmgr)
- Редактора реестра (RegEdit)
- Средство контроля пользовательских учетных записей (UAC)
- <SYSTEM32>\ping.exe /n 26 127.0.0.1
- <SYSTEM32>\mshta.exe "%WINDIR%\twunk_32.hta"
- <SYSTEM32>\taskkill.exe /im explorer.exe /f
- <SYSTEM32>\rundll32.exe <SYSTEM32>\shell32.dll,OpenAs_RunDLL %WINDIR%\nakakal.mp4
- <SYSTEM32>\wscript.exe "%WINDIR%\start.vbs"
- <SYSTEM32>\cmd.exe /c ""%WINDIR%\prikol.bat" "
- %WINDIR%\regedit.exe /s %WINDIR%\regedit.reg
- %WINDIR%\twunk_32.hta
- %WINDIR%\start.vbs
- %WINDIR%\win.reg
- %WINDIR%\Uninstall.ini
- %WINDIR%\Uninstall.exe
- %WINDIR%\regedit.reg
- %TEMP%\$inst\temp_0.tmp
- %TEMP%\$inst\2.tmp
- %WINDIR%\kol.bat
- %WINDIR%\prikol.bat
- %WINDIR%\nakakal.mp4
- %WINDIR%\regedit.reg
- %WINDIR%\nakakal.mp4
- %WINDIR%\start.vbs
- %TEMP%\$inst\temp_0.tmp
- %TEMP%\$inst\2.tmp
- ClassName: '' WindowName: ''
- ClassName: 'HTML Application Host Window Class' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'RegEdit_RegEdit' WindowName: ''