Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'cleansweep.exe' = 'C:\cleansweep.exe\cleansweep.exe'
- C:\cleansweep.exe\cleansweep.exe
- <LS_APPDATA>\Xenocode\Sandbox\media\3.6\2011.11.24T12.24\Virtual\STUBEXE\@APPDIR@\build.exe
- <SYSTEM32>\svchost.exe
- C:\cleansweep.exe\config.bin
- <LS_APPDATA>\Xenocode\Sandbox\media\3.6\2011.11.24T12.24\Virtual\XRegistry.tmp
- C:\cleansweep.exe\cleansweep.exe
- ClassName: 'Indicator' WindowName: ''