Техническая информация
- %WINDIR%\Viewplay.exe
- <SYSTEM32>\rundll32.exe <SYSTEM32>\shell32.dll,OpenAs_RunDLL %WINDIR%\noitemulle.pps
- <SYSTEM32>\cmd.exe /c ""%WINDIR%\antesdanoite.bat" "
- %WINDIR%\noitemulle.pps
- %WINDIR%\antesdanoite.bat
- %WINDIR%\Viewplay.exe
- 'localhost':1036
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'EDIT' WindowName: ''