Техническая информация
- '%WINDIR%\explorer.exe'
- '<SYSTEM32>\tskill.exe' Explorer
- '<SYSTEM32>\cmd.exe' /c ""%TEMP%\1.tmp\codigo fuente virus borra hal.bat""
- %WINDIR%\Explorer.EXE
- %TEMP%\1.tmp\codigo fuente virus borra hal.bat
- %TEMP%\1.tmp\codigo fuente virus borra hal.bat
- <SYSTEM32>\hal.dll
- ClassName: 'OleMainThreadWndClass' WindowName: '(null)'
- ClassName: 'SystemTray_Main' WindowName: '(null)'
- ClassName: 'CSCHiddenWindow' WindowName: '(null)'
- ClassName: 'SysListView32' WindowName: '(null)'
- ClassName: 'Proxy Desktop' WindowName: '(null)'
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: 'BaseBar' WindowName: 'ChanApp'