Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'CTS' = '%WINDIR%\CTS.exe'
- '%WINDIR%\CTS.exe'
- '%TEMP%\sWMj9gRn2r88W6w.exe'
- [<HKLM>\Software\mIRC]
- %TEMP%\Windows.lnk
- %TEMP%\nsy3.tmp\confirm.ini
- %TEMP%\nsy3.tmp\options.ini
- %TEMP%\nsy3.tmp\ioSpecial.ini
- %TEMP%\nsy3.tmp\InstallOptions.dll
- %TEMP%\nsy3.tmp\modern-header.bmp
- %TEMP%\nsy3.tmp\modern-wizard.bmp
- %TEMP%\nst2.tmp
- %WINDIR%\CTS.exe
- %TEMP%\sWMj9gRn2r88W6w.exe
- %TEMP%\nsy3.tmp\mIRC.dll
- %TEMP%\nsy3.tmp\System.dll
- %TEMP%\nsy3.tmp\AccessControl.dll
- %TEMP%\nsy3.tmp\UAC.dll
- %TEMP%\Windows.lnk
- ClassName: 'Shell_TrayWnd' WindowName: ''