Техническая информация
- '%TEMP%\~nsu.tmp\Au_.exe' _?=<Текущая директория>\
- '<SYSTEM32>\regsvr32.exe' /s /u "<Текущая директория>\ScriptHost.dll"
- '<SYSTEM32>\regsvr32.exe' /s /u "<Текущая директория>\PropertySyncPS.dll"
- '<SYSTEM32>\regsvr32.exe' /s /u "<Текущая директория>\AddonsFramework.dll"
- '<SYSTEM32>\regsvr32.exe' /s /u "<Текущая директория>\ButtonSite.dll"
- '<SYSTEM32>\regsvr32.exe' /s /u "\AddonsFramework.dll"
- '<SYSTEM32>\regsvr32.exe' /s /u "\PropertySyncPS.dll"
- '<SYSTEM32>\taskkill.exe' /F /IM PropertySync.exe
- '<SYSTEM32>\regsvr32.exe' /s /u "\ButtonSite.dll"
- '<SYSTEM32>\regsvr32.exe' /s /u "\ScriptHost.dll"
- iexplore.exe
- %TEMP%\nsd3.tmp\modern-wizard.bmp
- %TEMP%\nsd3.tmp\Processes.dll
- %TEMP%\nsd3.tmp\InstallOptions.dll
- %TEMP%\nsd3.tmp\ioSpecial.ini
- %TEMP%\~nsu.tmp\Au_.exe
- %TEMP%\nsd3.tmp\UAC.dll
- %TEMP%\nsd3.tmp\System.dll
- ClassName: 'MS_AutodialMonitor' WindowName: '(null)'
- ClassName: 'MS_WebcheckMonitor' WindowName: '(null)'
- ClassName: 'IEFrame' WindowName: '(null)'
- ClassName: '(null)' WindowName: '(null)'
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: '(null)' WindowName: 'Shell_TrayWnd'
- ClassName: '' WindowName: '(null)'