Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce] ' ' = '%WINDIR%\Soul.exe'
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices] ' ' = '<SYSTEM32>\я.exe'
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServicesOnce] ' ' = '<SYSTEM32>\я.exe'
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] ' ' = '<SYSTEM32>\я.exe'
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] ' ' = '%WINDIR%\Soul.exe'
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce] ' ' = '<SYSTEM32>\я.exe'
- %WINDIR%\Soul.exe
- <SYSTEM32>\я.exe
- <Полный путь к вирусу>
- '21#.#44.85.5':2013
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'