Техническая информация
- [<HKLM>\SOFTWARE\Classes\binimage\shell\open\command] '' = '"%TEMP%\~678444225244010159\App\UltraISO\UltraISO.exe" "%1"'
- [<HKLM>\SOFTWARE\Classes\UltraISO\shell\open\command] '' = '"%TEMP%\~678444225244010159\App\UltraISO\UltraISO.exe" "%1"'
- [<HKLM>\SYSTEM\ControlSet001\Services\ISODrive] 'ImagePath' = '%TEMP%\~678444225244010159\App\UltraISO\drivers\ISODrive.sys'
- [<HKLM>\SYSTEM\ControlSet001\Services\ISODrive] 'Start' = '00000001'
- '<SYSTEM32>\regsvr32.exe' /s "%TEMP%\isoshell.dll"
- '<SYSTEM32>\sc.exe' create "ISODrive" binpath= "%TEMP%\~678444225244010159\App\UltraISO\drivers\ISODrive.sys" type= "filesys" start= "system"
- '<SYSTEM32>\sc.exe' start "ISODrive"
- '<SYSTEM32>\cmd.exe' /c set
- '%TEMP%\~4012463060039854656~\sg.tmp' x "%TEMP%\~5484744914198616137.tmp" -y -aos -o"%TEMP%\~678444225244010159"
- '%TEMP%\~678444225244010159\UltraISOPortable.exe'
- <SYSTEM32>\cmd.exe
- %HOMEPATH%\SendTo\UltraISO.lnk
- %TEMP%\nse2.tmp
- %TEMP%\~5484744914198616137.tmp
- %TEMP%\~5484744914198616137.tmp
- %TEMP%\~5484744914198616137.tmp
- %TEMP%\~4012463060039854656~\sg.tmp