Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Start_Cleaner' = '%PROGRAM_FILES%\Start_Cleaner by g3n-h@ckm@n\<Имя вируса>.exe'
- '%PROGRAM_FILES%\Start_Cleaner by g3n-h@ckm@n\SCTraymenu.exe'
- %TEMP%\autF25A.tmp
- %PROGRAM_FILES%\Start_Cleaner by g3n-h@ckm@n\SCTraymenu.exe
- %PROGRAM_FILES%\Start_Cleaner by g3n-h@ckm@n\swxcacls.com
- %PROGRAM_FILES%\Start_Cleaner by g3n-h@ckm@n\<Имя вируса>.exe
- %TEMP%\autF1EC.tmp
- %WINDIR%\Temp\GUR3062.tmp
- %WINDIR%\Temp\TS_625A.tmp
- %WINDIR%\Temp\GUR3062.exe
- %TEMP%\autF1EC.tmp
- %TEMP%\autF25A.tmp
- ClassName: 'BUTTON' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''