Техническая информация
- C:\documents and settings\system.exe
- %WINDIR%\mvyz2dc.bat
- %ALLUSERSPROFILE%\microsoft\windows\start menu\programs\startup\╨▐╕┤360░▓╚ВЅ╬└╩┐.url
- '%WINDIR%\syswow64\cmd.exe' /c %WINDIR%\mVYZ2Dc.bat' (со скрытым окном)
- '%WINDIR%\syswow64\cmd.exe' /c %WINDIR%\mVYZ2Dc.bat
- '%WINDIR%\syswow64\attrib.exe' "%ALLUSERSPROFILE%\Microsoft\Windows\Start Menu\Programs\Startup" +r +a +s +h /s /d
- '%WINDIR%\syswow64\reg.exe' add "HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders" /v Startup /t REG_SZ /d "%ALLUSERSPROFILE%\Microsoft\Windows\Start Menu\Programs\Startup" /f
- '%WINDIR%\syswow64\reg.exe' add "HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders" /v Startup /t REG_SZ /d "%ALLUSERSPROFILE%\Microsoft\Windows\Start Menu\Programs\Startup" /f