Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\run] 'dlnbjjbdfb' = '%WINDIR%\system\llwzjy081217.exe'
- скрытых файлов
- <SYSTEM32>\ntsd.exe -c q -p 1416
- 360tray.exe
- %WINDIR%\system\mvjbj32dla.dll
- %ALLUSERSPROFILE%\jjjydf16.ini
- %WINDIR%\system\llwzjy081217.exe
- ClassName: 'IEFrame' WindowName: ''
- ClassName: 'CabinetWClass' WindowName: ''