Техническая информация
- Диспетчера задач (Taskmgr)
- '<SYSTEM32>\reg.exe' add hkcu\software\microsoft\windows\currentversion\policies\system /v disabletaskmgr /t reg_dword /d "1" /f
- '<SYSTEM32>\reg.exe' add HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System /v DisableTaskMgr /t REG_SZ /d 1 /f
- '<SYSTEM32>\mshta.exe' "<Текущая директория>\bsod.hta"
- '<SYSTEM32>\shutdown.exe' -s -t 60 -c "You have been infected by Codey.Trojan virus. The virus is created by Codex1, you can contact him on Rile5.com. Have a nice day!
- '<SYSTEM32>\attrib.exe' -r -s -h c:\boot.ini
- '<SYSTEM32>\attrib.exe' -r -s -h c:\autoexec.bat
- '<SYSTEM32>\attrib.exe' -r -s -h %WINDIR%\win.ini
- '<SYSTEM32>\attrib.exe' -r -s -h c:\ntldr
- <Текущая директория>\bsod.hta
- %TEMP%\4CP86YN7.bat
- %TEMP%\4CP86YN7.bat
- %WINDIR%\win.ini
- ClassName: 'Shell_TrayWnd' WindowName: ''