Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\WinHgvb32] 'Start' = '00000002'
- %PROGRAM_FILES%\7rar\WinHean32.exe
- <SYSTEM32>\rundll32.exe newdev.dll,ClientSideInstall \\.\pipe\PNP_Device_Install_Pipe_0.{13F277B6-C70B-4BFE-879D-04E4E2A458DA}
- %WINDIR%\Temp\Temporary Internet Files\Content.IE5\L7LLK365\desktop.ini
- %WINDIR%\Temp\Temporary Internet Files\Content.IE5\desktop.ini
- %WINDIR%\Temp\History\History.IE5\desktop.ini
- %WINDIR%\Temp\Temporary Internet Files\Content.IE5\K5IN8HIN\desktop.ini
- %PROGRAM_FILES%\7rar\WinHean32.exe
- %WINDIR%\Temp\Temporary Internet Files\Content.IE5\WPMRC9E3\desktop.ini
- %WINDIR%\Temp\Temporary Internet Files\Content.IE5\UQ8VPIQD\desktop.ini
- %WINDIR%\Temp\Temporary Internet Files\Content.IE5\L7LLK365\desktop.ini
- %WINDIR%\Temp\Temporary Internet Files\Content.IE5\desktop.ini
- %WINDIR%\Temp\History\History.IE5\desktop.ini
- %WINDIR%\Temp\Temporary Internet Files\Content.IE5\WPMRC9E3\desktop.ini
- %WINDIR%\Temp\Temporary Internet Files\Content.IE5\UQ8VPIQD\desktop.ini
- %WINDIR%\Temp\Temporary Internet Files\Content.IE5\K5IN8HIN\desktop.ini
- 'any':0
- ClassName: 'Shell_TrayWnd' WindowName: ''