Техническая информация
- %HOMEPATH%\Start Menu\Programs\Startup\ctfmon.exe.lnk
- <SYSTEM32>\ctfmon.exe
- <SYSTEM32>\dllcache\ctfmon.exe
- %PROGRAM_FILES%\slasde\abs.exe
- %PROGRAM_FILES%\oeuss\abs.cmd
- %PROGRAM_FILES%\slasde\adfs.exe
- %PROGRAM_FILES%\oeus\adfs.cmd
- <SYSTEM32>\ping.exe -n 10 127.1
- <SYSTEM32>\ping.exe -n 2 127.1
- <SYSTEM32>\ping.exe -n 50 127.1
- <SYSTEM32>\wscript.exe "%PROGRAM_FILES%\slasde\pichuli.vbs"
- <SYSTEM32>\taskkill.exe /f /im ctfmon.exe
- <SYSTEM32>\taskkill.exe /f /im ctfmon.exe.exe
- <SYSTEM32>\ctfmon.exe
- %PROGRAM_FILES%\slasde\adfs.exe
- %PROGRAM_FILES%\oeus\adfs.cmd
- %PROGRAM_FILES%\oeuss\abs.cmd
- %PROGRAM_FILES%\slasde\abs.exe
- %PROGRAM_FILES%\slasde\pichuli.bat
- %PROGRAM_FILES%\slasde\pichuli.vbs
- %PROGRAM_FILES%\slasde\ctfmon.exe.exe
- ClassName: '' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'EDIT' WindowName: ''