Техническая информация
- %TEMP%\$inst\2.tmp
- %TEMP%\$inst\temp_0.tmp
- %WINDIR%\s.txt
- %WINDIR%\i.exe
- %TEMP%\$inst\0001.tmp
- %TEMP%\$inst\0002.tmp
- %WINDIR%\ppm.bat
- %TEMP%\is-0hlhm.tmp\i.tmp
- %TEMP%\is-7gcgi.tmp\_isetup\_setup64.tmp
- %TEMP%\is-7gcgi.tmp\_isetup\_shfoldr.dll
- %TEMP%\$inst\temp_0.tmp
- %TEMP%\$inst\0001.tmp
- %TEMP%\$inst\0002.tmp
- %TEMP%\$inst\2.tmp
- '%WINDIR%\i.exe'
- '%TEMP%\is-0hlhm.tmp\i.tmp' /SL5="$300A2,18290244,114176,%WINDIR%\i.exe"
- '%WINDIR%\syswow64\cmd.exe' /c ""%WINDIR%\ppm.bat" "' (со скрытым окном)
- '%WINDIR%\syswow64\cmd.exe' /c ""%WINDIR%\ppm.bat" "
- '%WINDIR%\syswow64\cmd.exe' /c Reg query "HKEY_CURRENT_USER\Control Panel\International" /v "sdate"
- '%WINDIR%\syswow64\reg.exe' query "HKEY_CURRENT_USER\Control Panel\International" /v "sdate"