Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'truesoft' = '"<Полный путь к вирусу>"'
- %WINDIR%\system\drv\msinet.exe
- '<SYSTEM32>\taskmgr.exe'
- '%WINDIR%\regedit.exe'
- [<HKLM>\SOFTWARE\Microsoft\Internet Account Manager]
- <SYSTEM32>\dllcache\msconfig.exe.new
- %WINDIR%\pchealth\helpctr\binaries\msconfig.exe.new
- %WINDIR%\pchealth\helpctr\binaries\msconfig.exe
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'RegEdit_RegEdit' WindowName: ''
- ClassName: '' WindowName: 'Windows Task Manager'
- ClassName: '' WindowName: 'Диспетчер задач Windows'
- ClassName: '' WindowName: '???????? ???????'
- ClassName: '' WindowName: 'Редактор реестра'
- ClassName: '' WindowName: '????????? ????? Windows'