Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'yimoenc' = '%WINDIR%\yimoenc.exe'
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'yimodll' = '%WINDIR%\yimodll.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Windows VisFx Components] 'Start' = '00000002'
- %WINDIR%\yimoenc.exe
- %WINDIR%\yimodll.exe
- %WINDIR%\iyzxsvc.exe -i
- %WINDIR%\uid24.key
- %WINDIR%\ofxnm.dat
- %WINDIR%\yimoenc.exe
- C:\dbg.txt
- %WINDIR%\lupd.dat
- %WINDIR%\nxui.dat
- %WINDIR%\visfxun.exe
- %WINDIR%\iyzxsvc.exe
- %WINDIR%\sfxnm.dat
- %WINDIR%\tfxnm.dat
- %WINDIR%\yimodll.exe
- %WINDIR%\sfwv.dat
- %WINDIR%\yimoenc.exe
- %WINDIR%\yimodll.exe
- %WINDIR%\iyzxsvc.exe