Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Userinite' = '%WINDIR%\system\drivers\svchot.exe -s'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Userini' = '%WINDIR%\system\drivers\userprofile.exe'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Userinit' = '%WINDIR%\system\setup.exe'
- '<SYSTEM32>\ping.exe' -n 300 127.0.0.1
- %WINDIR%\system\key.rar
- %WINDIR%\inf\start.bat
- %WINDIR%\system\Document.doc
- %TEMP%\$inst\2.tmp
- %TEMP%\$inst\temp_0.tmp
- %WINDIR%\system\Rar.exe
- %WINDIR%\inf\start.bat
- %TEMP%\$inst\temp_0.tmp
- ClassName: 'WordPadClass' WindowName: ''
- ClassName: 'Indicator' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''