Техническая информация
- [<HKCU>\Software\Microsoft\Windows NT\CurrentVersion\Windows] 'load' = '%WINDIR%\fOfSzY\gYvGr.exe'
- '<SYSTEM32>\wscript.exe' "<Текущая директория>\tem.vbs"
- '<SYSTEM32>\cmd.exe'
- '%WINDIR%\fOfSzY\gYvGr.exe'
- <SYSTEM32>\cmd.exe
- %WINDIR%\onest.txt
- <Текущая директория>\tem.vbs
- %WINDIR%\Media\hd.wav
- %WINDIR%\fOfSzY\PTR.exe
- %WINDIR%\pcq.exe
- %WINDIR%\star.dat
- %WINDIR%\Media\[eojkq].mp3
- %WINDIR%\st.dat
- %WINDIR%\Report.log
- %WINDIR%\webpid.txt
- %WINDIR%\fOfSzY\drH.exe
- %WINDIR%\fOfSzY\LiveUDHelper.dll
- %WINDIR%\fOfSzY\gYvGr.exe
- %WINDIR%\mcconfig.dat
- %WINDIR%\Media\McIe.wav
- %WINDIR%\Media\Mcfg.wav
- %WINDIR%\fOfSzY\G57.exe
- %WINDIR%\fOfSzY\BPp.exe
- %WINDIR%\fOfSzY\27e.exe
- %WINDIR%\fOfSzY\Dqc.exe
- %WINDIR%\fOfSzY\MIJ.exe
- <Текущая директория>\tem.vbs
- %WINDIR%\Media\[eojkq].mp3 в %WINDIR%\fOfSzY\LiveUDHelper.dll
- ClassName: 'ComboBoxEx32' WindowName: ''
- ClassName: 'ComboBox' WindowName: ''
- ClassName: 'Edit' WindowName: ''
- ClassName: 'ReBarWindow32' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'IEFrame' WindowName: ''
- ClassName: 'WorkerW' WindowName: ''