Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Application' = '%APPDATA%\app.exe -boot'
- <SYSTEM32>\rdpclip.exe
- %WINDIR%\Explorer.EXE
- %WINDIR%\Microsoft.NET\Framework\v2.0.50727\AppLaunch.exe
- safari.exe
- ICQ.exe
- pidgin.exe
- opera.exe
- chrome.exe
- firefox.exe
- iexplore.exe
- %APPDATA%\app.exe
- %WINDIR%\Microsoft.NET\Framework\v2.0.50727\AppLaunch.exe
- '%APPDATA%\app.exe'
- '<SYSTEM32>\cmd.exe' del "%WINDIR%\Microsoft.NET\Framework\v2.0.50727\AppLaunch.exe"
- '<SYSTEM32>\rdpclip.exe'
- '%WINDIR%\Microsoft.NET\Framework\v2.0.50727\AppLaunch.exe'