Техническая информация
- '<SYSTEM32>\iehv.exe' /stext %WINDIR%\addins\his.txt
- '<SYSTEM32>\dialup.exe' /stext %WINDIR%\addins\dup.txt
- '<SYSTEM32>\keys.exe' /stext %WINDIR%\addins\key.txt
- '<SYSTEM32>\iepv.exe' /stext %WINDIR%\addins\iep.txt
- '<SYSTEM32>\pspv.exe' /stext %WINDIR%\addins\pas.txt
- '<SYSTEM32>\graber.exe'
- '<SYSTEM32>\CProcess.exe' /stext %WINDIR%\addins\prc.txt
- '<SYSTEM32>\cports.exe' /stext %WINDIR%\addins\prt.txt
- '<SYSTEM32>\cmd.exe' /c ""%WINDIR%\Temp\a00473.bat" "<SYSTEM32>\graber.exe" "
- %WINDIR%\addins\his.txt
- %WINDIR%\addins\key.txt
- %WINDIR%\addins\prc.txt
- %WINDIR%\addins\pas.txt
- %WINDIR%\addins\prt.txt
- %WINDIR%\addins\raport\prc.txt
- %WINDIR%\addins\raport\prt.txt
- %WINDIR%\addins\raport\pas.txt
- %WINDIR%\addins\raport\his.txt
- %WINDIR%\addins\raport\key.txt
- <SYSTEM32>\graber.exe
- <SYSTEM32>\iehv.exe
- <SYSTEM32>\dialup.exe
- <SYSTEM32>\cports.exe
- <SYSTEM32>\CProcess.exe
- <SYSTEM32>\Wireless.exe
- %WINDIR%\Temp\a00473.bat
- <SYSTEM32>\pspv.exe
- <SYSTEM32>\iepv.exe
- <SYSTEM32>\keys.exe
- %WINDIR%\Temp\a00473.bat
- %WINDIR%\addins\prc.txt
- %WINDIR%\addins\prt.txt
- %WINDIR%\Temp\a00473.bat
- %WINDIR%\addins\his.txt
- %WINDIR%\addins\key.txt
- %WINDIR%\addins\pas.txt
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: 'EDIT' WindowName: '(null)'