Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] '' = '"%APPDATA%\Internet Explorer\svchost.exe" "%APPDATA%\Internet Explorer\mscomsys.ocx" start'
- %WINDIR%\Tasks\conime.ocx
- %HOMEPATH%\Start Menu\Programs\Startup\conime.lnk
- %WINDIR%\Tasks\conime.bat
- %WINDIR%\Tasks\conime.exe
- '%APPDATA%\Internet Explorer\svchost.exe' "%APPDATA%\Internet Explorer\mscomsys.ocx" start
- '<SYSTEM32>\cmd.exe' /c ""%APPDATA%\Internet Explorer\ntuser.bat" "
- <SYSTEM32>\cmd.exe
- %APPDATA%\Internet Explorer\mscomsys.ocx
- %APPDATA%\Internet Explorer\ntuser.bat
- <Текущая директория>\<Имя вируса>
- %APPDATA%\Internet Explorer\svchost.exe
- %APPDATA%\desktap.ini
- %APPDATA%\desktap.ini
- ClassName: 'Indicator' WindowName: '(null)'