Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'eMulle' = 'c:\Winamp6.exe'
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'PPLiwe' = 'C:\Gogle.exe'
- 'C:\Winamp6.exe'
- 'C:\Gogle.exe'
- '%PROGRAM_FILES%\dqwk.exe'
- '%PROGRAM_FILES%\MiniiIE.exe'
- '<SYSTEM32>\reg.exe' ADD HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run /v PPLiwe /t REG_SZ /d C:\Gogle.exe /f
- '<SYSTEM32>\attrib.exe' +r +s +h C:\Gogle.exe
- '<SYSTEM32>\cmd.exe' /c "%PROGRAM_FILES%\Boot.bat"
- 360tray.exe
- %HOMEPATH%\Desktop\Internet Explorer.lnk
- C:\text.txt
- C:\Gogle.exe
- %PROGRAM_FILES%\Boot.bat
- C:\Winamp6.exe
- %PROGRAM_FILES%\MiniiIE.exe
- %TEMP%\FP1.tmp
- %PROGRAM_FILES%\dqwk.exe
- C:\Gogle.exe
- C:\Winamp6.exe
- %TEMP%\FP1.tmp
- ClassName: 'SysListView32' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'Progman' WindowName: ''
- ClassName: 'SHELLDLL_DefView' WindowName: ''