Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'minihava' = '%PROGRAM_FILES%\Shenturk\Mini Hava\minihava.exe'
- %TEMP%\5.tmp\1.exe
- %TEMP%\5.tmp\set.exe
- %TEMP%\1.tmp\x.exe
- <SYSTEM32>\msiexec.exe /V
- <SYSTEM32>\cmd.exe /c ""%TEMP%\5.tmp\x.bat" "%TEMP%\1.tmp\""
- <SYSTEM32>\cmd.exe /c ""%TEMP%\1.tmp\Kur.cmd" "<Текущая директория>\""
- <SYSTEM32>\msiexec.exe /i "setup.msi" /qn
- %WINDIR%\Installer\{3D80C8F7-4271-40C4-B6FF-E5ADF9DCF87E}\Icon_minihava.exe
- %ALLUSERSPROFILE%\Desktop\Mini Hava.lnk
- %ALLUSERSPROFILE%\Start Menu\Programs\Mini Hava\Mini Hava Anasayfa.url
- %TEMP%\5.tmp\x.bat
- %TEMP%\Tempani0.gif
- %TEMP%\5.tmp\set.exe
- %TEMP%\5.tmp\1.exe
- %TEMP%\1.tmp\x.exe
- %TEMP%\1.tmp\setup.msi
- %TEMP%\1.tmp\Kur.cmd
- %WINDIR%\Installer\1b64b.msi
- %PROGRAM_FILES%\Shenturk\Mini Hava\minihava.exe
- C:\Config.Msi\1b64e.rbs
- %WINDIR%\Installer\MSI2.tmp
- %TEMP%\1.tmp\setup.msi
- %TEMP%\5.tmp\x.bat
- %TEMP%\1.tmp\Kur.cmd
- %TEMP%\1.tmp\x.exe
- %TEMP%\5.tmp\set.exe
- C:\Config.Msi\1b64e.rbs
- %WINDIR%\Installer\MSI2.tmp
- %TEMP%\5.tmp\1.exe
- %WINDIR%\Installer\1b64b.msi
- ClassName: '' WindowName: 'AnimationClass'
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'Indicator' WindowName: ''