Техническая информация
- [<HKCU>\Software\Microsoft\Windows NT\CurrentVersion\Windows] 'Load' = '<Имя вируса>.exe'
- <SYSTEM32>\taskkill.exe /f /im chrome.exe
- <SYSTEM32>\taskkill.exe /f /im iexplore.exe
- <SYSTEM32>\taskkill.exe /f /im magent.exe
- <SYSTEM32>\taskkill.exe /f /im opera.exe
- <SYSTEM32>\sc.exe stop sharedaccess
- <SYSTEM32>\sc.exe stop Guard.Mail.ru
- <SYSTEM32>\taskkill.exe /f /im firefox.exe
- iexplore.exe
- magent.exe
- chrome.exe
- firefox.exe
- opera.exe
- <SYSTEM32>\<Имя вируса>.exe
- ClassName: '' WindowName: '????? ?????????? - Internet Explorer'
- ClassName: '' WindowName: '???? - Google Chrome'
- ClassName: '' WindowName: '????? ?????????? - Google Chrome'
- ClassName: '' WindowName: '??????????? ????????????'
- ClassName: '' WindowName: '????????? ??????? ??????'
- ClassName: '' WindowName: '???? - Internet Explorer'
- ClassName: '' WindowName: '????? ?????????? - Mozilla Firefox'
- ClassName: '' WindowName: ''
- ClassName: '' WindowName: 'VKspy!'
- ClassName: '' WindowName: '???? - Opera'
- ClassName: '' WindowName: '????? ?????????? - Opera'
- ClassName: '' WindowName: '???? - Mozilla Firefox'