Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\GCHU] 'ImagePath' = '%ProgramFiles%\Yeuks\Uxgyz.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\GCHU] 'Start' = '00000002'
- '%TEMP%\g81\Glary_Undelete_setup.exe'
- %ProgramFiles%\Yeuks\fadoes.exe
- %ProgramFiles%\Yeuks\caivs\wescev.dll
- %CommonProgramFiles%\System\Ole DB\MSPat.xml
- %ProgramFiles%\Yeuks\fovoof.exe
- %TEMP%\g81\setup.ini
- %TEMP%\g81\gTemp.dat
- %ProgramFiles%\Yeuks\caivs\pat.xml
- %TEMP%\g81\jTemp.dat
- %ProgramFiles%\Yeuks\fovoof.exe в %ProgramFiles%\Yeuks\Uxgyz.exe
- %ProgramFiles%\Yeuks\fadoes.exe в %ProgramFiles%\Yeuks\Efmkf.exe
- %TEMP%\g81\gTemp.dat в %TEMP%\g81\Glary_Undelete_setup.exe
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'EDIT' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''