Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'TWToIQoLFnV1BF5xzf6yffo0tQEeq7y0ia24g4gKnEws7OdBC2iMmHNVlNKzS4IuydONKAKBf14HNvi4X9WWNHxOREf2w03FL6a47MAajXkD5GRZzDa7c0McnRx1VL1hktPDsxJO3LiybnoamlSueh5mdkqcPF9kqi2ZDFC9ffa3Sp5T7UPOI3Ihp4NWgL5har9q1IjfUDr3TbWrPcICkNJi5B12KhGifapW9yvtaslaFoTzqzCaVOHK3k3xKp3e6' = ''
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'IO4SY60YLrb4LDwMlqbhxq7ZaQZJLjgSlfrvLCLIzAN89nzwtevaIQSQNyExVLnn89JfyV3s5T8WOGp5jM6n1WTizpNOrYC9a4umEiZpXUgqpqnFLvZ5qGyrdiApV1YosO83Qby3D2xKeDVfKCfK6ra0oTUjUvHxweHej81CX0Dq73fRMn6u2jkCR0u0zKB1F4pvJBF1d9oXCM5OaeBDzbA7nOojgquvyWeRU8Mz6d9kW16Ukz5FGuovtHdHXNoW0' = ''
- Диспетчера задач (Taskmgr)
- Редактора реестра (RegEdit)
- Компонент восстановления системы (SR)
- %WINDIR%\regedit.exe /s "%TEMP%\TMP1.tmp.REG"
- <SYSTEM32>\MSWINSCK.OCX
- %HOMEPATH%\ntuser.dt
- ClassName: 'Indicator' WindowName: ''
- ClassName: 'RegEdit_RegEdit' WindowName: ''