Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Microsoft Studio 12' = '%PROGRAM_FILES%\Microsoft Studio\maker.exe'
- %PROGRAM_FILES%\Microsoft Studio\maker.exe
- %WINDIR%\Temp\winlogon.exe
- <SYSTEM32>\attrib.exe +h +s /d /s "%PROGRAM_FILES%\Microsoft Studio"
- %PROGRAM_FILES%\Microsoft Studio\log.txt
- %PROGRAM_FILES%\Microsoft Studio\mlog.exe
- %PROGRAM_FILES%\Microsoft Studio\mscr.exe
- %PROGRAM_FILES%\Microsoft Studio\maker.exe
- %WINDIR%\Temp\setup.exe
- %WINDIR%\Temp\edocc.exe
- %WINDIR%\Temp\winlogon.exe