Техническая информация
- '%TEMP%\RarSFX0\Flash-Player.version4.10.5.sfx.exe' -pPassword12345 -d<LS_APPDATA>\Temp
- '%TEMP%\RarSFX1\Flash-Player.version4.10.5.exe'
- '%TEMP%\94DF.tmp\update.exe' -d<LS_APPDATA>\Temp
- '%TEMP%\9D19.tmp\Flash-Player.exe' -d<LS_APPDATA>\Temp
- '<SYSTEM32>\reg.exe' add "HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1" /v "Flags" /t REG_DWORD /d 219 /f
- '<SYSTEM32>\rundll32.exe' dfdts.dll,DfdGetDefaultPolicyAndSMART
- '<SYSTEM32>\cmd.exe' /c ""%TEMP%\RarSFX0\update.bat" "
- '<SYSTEM32>\cmd.exe' /c ""%TEMP%\94DF.tmp\update.bat""
- '<SYSTEM32>\cmd.exe' /c ""%TEMP%\9D19.tmp\update.bat" -d<LS_APPDATA>\Temp "
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1] 'Flags' = '000000DB'
- %TEMP%\RarSFX1\Flash-Player.version4.10.5.exe
- %TEMP%\RarSFX0\update.bat
- %TEMP%\uDwn-2LGS\config.bip
- C:\$Recycle.Bin\S-1-5-21-3525224950-2885160813-905547259-1000\$IF9HZME
- %TEMP%\uDwn-2LGS\FlashPlayerv2.crx
- %TEMP%\94DF.tmp\update.exe
- %TEMP%\94DF.tmp\update.bat
- %TEMP%\9D19.tmp\update.bat
- %TEMP%\RarSFX0\Flash-Player.version4.10.5.sfx.exe
- %TEMP%\9D19.tmp\Flash-Player.exe
- %TEMP%\RarSFX1\Flash-Player.version4.10.5.exe
- %TEMP%\RarSFX0\Flash-Player.version4.10.5.sfx.exe
- %TEMP%\RarSFX0\update.bat
- %TEMP%\uDwn-2LGS\FlashPlayerv2.crx
- %TEMP%\94DF.tmp\update.bat
- %TEMP%\9D19.tmp\update.bat
- %TEMP%\uDwn-2LGS\config.bip
- ClassName: 'OleMainThreadWndClass' WindowName: '(null)'
- ClassName: 'EDIT' WindowName: '(null)'