Техническая информация
- '%TEMP%\tmp00002a7895\msdcc.exe'
- '%TEMP%\tmp00002a7895\msdcs.exe'
- '%PROGRAM_FILES%\ComPlus\news.exe' <Полный путь к вирусу>===
- '<SYSTEM32>\taskkill.exe' /f /im msdcs.exe
- '<SYSTEM32>\taskkill.exe' /f /im msdcc.exe
- %TEMP%\tmp00002a7895\msdcs.exe
- %TEMP%\tmp00002a7895\msdcc.exe
- %PROGRAM_FILES%\ComPlus\drv.txta
- %PROGRAM_FILES%\ComPlus\news.exe
- %PROGRAM_FILES%\ComPlus\msdcs.txta
- %PROGRAM_FILES%\ComPlus\msdcc.txta
- ClassName: '(null)' WindowName: '(null)'