Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] '' = '%WINDIR%\twain_32\xpabd9887Jb6.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\JieBa] 'Start' = '00000002'
- [<HKLM>\SYSTEM\ControlSet001\Services\JieBa] 'ImagePath' = '%ProgramFiles%\Winjieba\JieBa.sys'
- '%WINDIR%\regedit.exe' /s c:\reg.reg
- '<SYSTEM32>\cmd.exe' /c regedit /s c:\reg.reg
- '<SYSTEM32>\cmmon32.exe'
- <SYSTEM32>\cmmon32.exe
- %ProgramFiles%\Winjieba\dlcore.dll
- %ProgramFiles%\Winjieba\jieba.exe
- %ProgramFiles%\Winjieba\JieBa.sys
- %WINDIR%\systen.log
- %ProgramFiles%\Winjieba\unrar.dll
- C:\reg.reg
- %WINDIR%\twain_32\xpabd9887Jb6.exe
- %WINDIR%\lj.ini
- %WINDIR%\twain_32\unrar.dll
- %WINDIR%\twain_32\dlcore.dll
- %WINDIR%\lj.ini
- C:\reg.reg
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'RegEdit_RegEdit' WindowName: ''
- ClassName: 'Indicator' WindowName: ''