Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] '{C51C4AFB-8A3A-6C2E-BA41-C10F02740731}' = ''
- %TEMP%\xtlhy<Имя вируса>.dll
- %TEMP%\xtlhy<Имя вируса>.dll
- ClassName: '#32770' WindowName: 'Windows ????????'
- ClassName: 'TianLongBaBu WndClass' WindowName: ''
- ClassName: '#32770' WindowName: '????????????????????'
- ClassName: 'Eset Client Frame' WindowName: 'ESET NOD32 Antivirus'
- ClassName: '#32770' WindowName: '????????????????'