Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] 'A4003601' = '{A4003601-C378-4699-B9D0-66BDF49F511E}'
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] '{A4003601-C378-4699-B9D0-66BDF49F511E}' = ''
- [<HKLM>\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] 'AppInit_DLLs' = 'akggjmgh.dll'
- <SYSTEM32>\cmd.exe /c ""%TEMP%\SelfDel.bat" "
- %TEMP%\SelfDel.bat
- <SYSTEM32>\akggjmgh.dll
- ClassName: 'Progman' WindowName: 'Program Manager'