Техническая информация
- <SYSTEM32>\cmd.exe /c ""%TEMP%\disable.bat" "
- <SYSTEM32>\cmd.exe /c ""%WINDIR%\rundll32.bat" "
- <SYSTEM32>\ping.exe 1.1.1.1 -n 1 -w 1000
- <SYSTEM32>\ipconfig.exe -flushdns
- <SYSTEM32>\tasklist.exe
- <SYSTEM32>\taskkill.exe /f /im TCPEye.exe
- <SYSTEM32>\taskkill.exe /f /im IDMan.exe
- <SYSTEM32>\taskkill.exe /f /im procexp.exe
- <SYSTEM32>\taskkill.exe /f /im taskmgr.exe
- <SYSTEM32>\taskkill.exe /f /im sbiectrl.exe
- %TEMP%\disable.bat
- %PROGRAM_FILES%\Internet Download Manager\IDMan.exe
- %TEMP%\tasklist.txt
- %WINDIR%\unsecapp.exe
- %TEMP%\$inst\2.tmp
- %TEMP%\$inst\temp_0.tmp
- %WINDIR%\rundll32.bat
- %TEMP%\$inst\2.tmp
- %TEMP%\$inst\temp_0.tmp
- ClassName: '' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''