Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Autumn' = '%APPDATA%\Founder Systems\SystemControlS.exe'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Autumn' = '<Полный путь к вирусу>'
- '%APPDATA%\Founder Systems\SystemControlS.exe'
- '%APPDATA%\Founder Systems\logtasks.exe'
- '%WINDIR%\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe' /silent /codebase "%APPDATA%\Founder Systems\ie2.dll"
- %APPDATA%\Founder Systems\home.js
- %APPDATA%\Founder Systems\icon_128.png
- %APPDATA%\Icon\o.ico
- %HOMEPATH%\Desktop\Одноклассники - социальная сеть.url
- %APPDATA%\Founder Systems\icon_16.png
- %APPDATA%\Founder Systems\manifest.json
- %APPDATA%\Founder Systems\page.html
- %APPDATA%\Founder Systems\icon_32.png
- %APPDATA%\Founder Systems\jquery.js
- %APPDATA%\Icon\vu.ico
- %HOMEPATH%\Desktop\Казино онлайн на деньги!.url
- %APPDATA%\Founder Systems\logtasks.exe
- %APPDATA%\Founder Systems\SystemControlS.exe
- %TEMP%\tmp1.tmp
- %APPDATA%\Icon\v.ico
- %HOMEPATH%\Desktop\Вконтакте - социальная сеть.url
- %APPDATA%\Icon\w.ico
- %HOMEPATH%\Desktop\Играть онлайн.url
- %TEMP%\tmp1.tmp
- ClassName: 'Indicator' WindowName: ''