Техническая информация
- <SYSTEM32>\find.exe /v /i "[windows]"
- <SYSTEM32>\find.exe /v /i "shell=explorer.exe"
- <SYSTEM32>\find.exe /v /i "[boot]"
- <SYSTEM32>\find.exe /v /i "NullPort="
- <SYSTEM32>\find.exe /v /i "run="
- <SYSTEM32>\find.exe /v /i "load="
- <SYSTEM32>\find.exe /i /v "run"
- <SYSTEM32>\find.exe "YVBFn7"
- <SYSTEM32>\find.exe /i "XP"
- <SYSTEM32>\cmd.exe /c ""%TEMP%\1.tmp\BAT.Batch-O-Matic.76.bat""
- <SYSTEM32>\attrib.exe -r %WINDIR%\winstart.bat
- <SYSTEM32>\attrib.exe -r \autoexec.bat
- <SYSTEM32>\attrib.exe +s +h %TEMP%\BX3PNO
- %TEMP%\YXu.vbs
- %TEMP%\_OU5Qc.4I
- %TEMP%\Yrswh9TK.4I
- %TEMP%\W4Sci.4I
- %TEMP%\o19H7B0.vbs
- %TEMP%\xp_i.4I
- %TEMP%\tgKfK4j.4I
- %TEMP%\gGj0x.4I
- %TEMP%\kGmm9LQ2.vbs
- %TEMP%\runset.bat
- %TEMP%\BX3PNO\A0CbRkyH.bat
- %TEMP%\1.tmp\BAT.Batch-O-Matic.76.bat
- %TEMP%\U1m7RY.4I
- %TEMP%\drvhelp.vbs
- %TEMP%\shellwatch.js
- %TEMP%\BX3PNO\IyWi8.bat
- %WINDIR%\winstart.bat
- %WINDIR%\win.ini
- %WINDIR%\system.ini