Техническая информация
- '<SYSTEM32>\cmd.exe' /c ""%TEMP%\3.tmp\4.bat" %WINDIR%\Logs\CBS\ \0.exe"
- '<SYSTEM32>\taskkill.exe' /F /IM IDMan.exe
- '<SYSTEM32>\regini.exe' permdel.txt
- '%CommonProgramFiles%\ .exe'
- '<SYSTEM32>\cmd.exe' /c ""%TEMP%\7ZSfx000.cmd" "
- '%WINDIR%\Logs\CBS\ \0.exe'
- %WINDIR%\Logs\CBS\ \0.exe
- %TEMP%\aut2.tmp
- %TEMP%\3.tmp\permdel.txt
- %TEMP%\3.tmp\4.bat
- %CommonProgramFiles%\ .exe
- %TEMP%\aut1.tmp
- %TEMP%\7ZSfx000.cmd
- %WINDIR%\Logs\CBS\ \Desktop.ini
- %WINDIR%\Logs\CBS\ \Desktop.ini
- %TEMP%\7ZSfx000.cmd
- %TEMP%\aut2.tmp
- %TEMP%\aut1.tmp
- %CommonProgramFiles%\ .exe
- ClassName: '' WindowName: ''