Техническая информация
- '%WINDIR%\Web\printers\usbhard.exe'
- 'C:\ma.exe'
- '<SYSTEM32>\ping.exe' 127.0.0.1 -n 3
- '<SYSTEM32>\cmd.exe' /c %WINDIR%\Web\printers\11a.bat
- '<SYSTEM32>\attrib.exe' -S -H c:\ma.exe
- '<SYSTEM32>\attrib.exe' -S -H c:\lss.exe
- '<SYSTEM32>\cmd.exe' /c %WINDIR%\web\printers\125.bat
- '<SYSTEM32>\wscript.exe' "c:\1.vbs"
- '<SYSTEM32>\attrib.exe' +R +A +S +H %WINDIR%\web\printers
- '<SYSTEM32>\attrib.exe' -H -S "%ALLUSERSPROFILE%\??????\??\??\desktop.ini"
- %WINDIR%\Web\printers\125.bat
- %WINDIR%\Web\printers\11a.bat
- %WINDIR%\Web\printers\md5.txt
- C:\1.vbs
- C:\ma.exe
- %WINDIR%\Web\printers\usbhard.exe
- %WINDIR%\Web\printers\usbhard.rar
- C:\1.vbs
- C:\ma.exe
- C:\ma.exe
- %WINDIR%\Web\printers\usbhard.exe
- %TEMP%\~DF7FBC.tmp
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: 'EDIT' WindowName: '(null)'