Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\WinHjkp32] 'Start' = '00000002'
- %PROGRAM_FILES%\7rar\WinHgbh32.exe
- <SYSTEM32>\rundll32.exe newdev.dll,ClientSideInstall \\.\pipe\PNP_Device_Install_Pipe_0.{76E8BA48-F860-4C1C-A21F-43A1FB0D7B02}
- %WINDIR%\Temp\Temporary Internet Files\Content.IE5\M17BA1W6\desktop.ini
- %WINDIR%\Temp\Temporary Internet Files\Content.IE5\F7HIABUV\desktop.ini
- %WINDIR%\Temp\Temporary Internet Files\Content.IE5\S5AVCDQ3\desktop.ini
- %PROGRAM_FILES%\7rar\WinHgbh32.exe
- %WINDIR%\Temp\Temporary Internet Files\Content.IE5\desktop.ini
- %WINDIR%\Temp\Temporary Internet Files\Content.IE5\F7HIABUV\desktop.ini
- %WINDIR%\Temp\Temporary Internet Files\Content.IE5\M17BA1W6\desktop.ini
- %WINDIR%\Temp\Temporary Internet Files\Content.IE5\desktop.ini
- 'any':0
- ClassName: 'Shell_TrayWnd' WindowName: ''