Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'E6sos' = '<SYSTEM32>\E6zxc.exe'
- <SYSTEM32>\regsvr32.exe /s <SYSTEM32>\E6szxc20.dll
- %WINDIR%\Explorer.EXE
- Библиотека-обработчик для всех процессов: <SYSTEM32>\E6szxc10.dll
- ClassName: 'AVP.Product_Notification' WindowName: ''
- ClassName: 'AVP.AlertDialog' WindowName: ''
- <SYSTEM32>\E6szxc10.dll
- <SYSTEM32>\E6szxc20.dll
- <SYSTEM32>\E6zxc.exe
- <SYSTEM32>\E6szxc10.dll
- <SYSTEM32>\E6zxc.exe
- ClassName: 'IOSHDiuY&*Srgdfgk*(W&ytfhdfh(*^Wrt*#%6y7765675reg($&%^$W*&%$%6##$%!@#!0a%#!@' WindowName: 'sdf*&S^dytrfgfdgS&*^g87dfg$5t4e67*&%fgklnsdiu$%^hkhdfgdfgQ$%45dfggfdgd%^*&%SDF^!@#!@'
- ClassName: 'HSgodfg(*&*^76576dsfgjhdfg^Dg&*E(XDgf6df78gjghXDUG&SD%gfdfg(*dfewrfS*&D%^F&*DStygvfd^WS*$5687$565^!sdfg(QW#*^56%a!@#!' WindowName: 'BZDVJKGUIA765675STY#r87egdfg*Q#^asdfgert!@#eaf!@#!CJ@#!&SU$*(tdfhgfgh(%&!@'
- ClassName: 'Indicator' WindowName: ''