Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'googletalk' = '%APPDATA%\Google Talk\googletalk.exe /autostart'
- %APPDATA%\Google Talk\googletalk.exe
- %APPDATA%\Microsoft\Sze\hqhmp
- ClassName: '5 ' WindowName: '9'
- ClassName: '5 ' WindowName: '5 '
- ClassName: '850' WindowName: '369297 '
- ClassName: '7007 95' WindowName: '7007 95'
- ClassName: ' 88' WindowName: ' 088'
- ClassName: '9 21 33 4' WindowName: '1 470'
- ClassName: '93216' WindowName: '93216'
- ClassName: '1 7 ' WindowName: '875 3'
- ClassName: ' 6' WindowName: '456 '
- ClassName: '4' WindowName: '4'
- ClassName: ' ' WindowName: '15 '
- ClassName: '31 87 472' WindowName: '12215723 '
- ClassName: ' 4561 ' WindowName: ' 08 5'
- ClassName: ' 08 5' WindowName: ' 08 5'
- ClassName: ' ' WindowName: '22 293 '
- ClassName: ' 8 ' WindowName: '369297 '
- ClassName: ' 6' WindowName: ' 0 265'
- ClassName: '15 ' WindowName: '334 1 '
- ClassName: '456 ' WindowName: '456 '
- ClassName: '32' WindowName: '32'
- ClassName: '6 ' WindowName: '6 '
- ClassName: '40 8 3' WindowName: '40 8 3'
- ClassName: '1 7 ' WindowName: '93216'
- ClassName: '850' WindowName: '1 7 '
- ClassName: '18' WindowName: '92 3'
- ClassName: '15 ' WindowName: '8 '
- ClassName: '850' WindowName: '850'
- ClassName: '13' WindowName: ' 6 75'
- ClassName: '63837 2' WindowName: '3164346 '
- ClassName: '9 5' WindowName: '15 '
- '<SYSTEM32>\systeminfo.exe'
- '<SYSTEM32>\cmd.exe' /C SYSTEMINFO && SYSTEMINFO && SYSTEMINFO && SYSTEMINFO && SYSTEMINFO && DEL "<Полный путь к файлу>"