Техническая информация
- %TEMP%\SandboxieInstall-32-bit-209437.exe
- C:\SandboxieInstall.exe
- C:\lszt.exe
- <SYSTEM32>\taskkill.exe /f /im zhengtu.dat /T
- <SYSTEM32>\cmd.exe /c <SYSTEM32>\abc.bat
- <SYSTEM32>\net1.exe stop cryptsvc
- <SYSTEM32>\net.exe stop cryptsvc
- <SYSTEM32>\sc.exe config cryptsvc start= disabled
- <SYSTEM32>\sc.exe delete cryptsvc
- %TEMP%\nsx3.tmp
- <SYSTEM32>\abc.bat
- %TEMP%\nss4.tmp\LangDLL.dll
- %TEMP%\nss4.tmp\System.dll
- C:\SandboxieInstall.exe
- C:\lszt.exe
- %TEMP%\SandboxieInstall-32-bit-209437.exe
- <SYSTEM32>\abc.dll
- <SYSTEM32>\abc.dll в <SYSTEM32>\ksuser.dll
- ClassName: '' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''