Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'vers500idn.exe' = '"%APPDATA%\C846E90162616F3CBA9E4126F741E560\vers500idn.exe"'
- %HOMEPATH%\Start Menu\Programs\Startup\Zentom System Guard.lnk
- %APPDATA%\C846E90162616F3CBA9E4126F741E560\vers500idn.exe 7071624500
- %HOMEPATH%\Start Menu\Programs\Zentom System Guard\Zentom System Guard.lnk
- %HOMEPATH%\Start Menu\Zentom System Guard.lnk
- %APPDATA%\Microsoft\Internet Explorer\Quick Launch\Zentom System Guard.lnk
- %HOMEPATH%\Start Menu\Programs\Zentom System Guard\Uninstall.lnk
- %HOMEPATH%\Desktop\Zentom System Guard.lnk
- %APPDATA%\C846E90162616F3CBA9E4126F741E560\enemies-names.txt
- %APPDATA%\C846E90162616F3CBA9E4126F741E560\vers500idn.exe
- %APPDATA%\C846E90162616F3CBA9E4126F741E560\hookdll.dll
- %APPDATA%\C846E90162616F3CBA9E4126F741E560\local.ini
- 'do##ty.in':80
- do##ty.in/index.php?pr##########################################################################################################
- do##ty.in/
- DNS ASK s.##roty.in
- DNS ASK do##ty.in
- ClassName: 'SysPager' WindowName: ''
- ClassName: 'ToolbarWindow32' WindowName: ''
- ClassName: '' WindowName: ''
- ClassName: 'TrayNotifyWnd' WindowName: ''
- ClassName: 'Indicator' WindowName: ''
- ClassName: 'msctls_updown32' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''