Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Alg' = 'C:\alg.exe'
- C:\mb.exe
- C:\alg.exe
- C:\smsc.exe
- %PROGRAM_FILES%\Windows Media Player\X5.exe
- %PROGRAM_FILES%\Windows Media Player\395.exe
- %WINDIR%\regedit.exe /s ffr.reg
- %WINDIR%\system\QQ.exe
- %WINDIR%\system\MSINET.OCX
- %HOMEPATH%\Desktop\НшНјРг.exe
- %WINDIR%\system\ffr.reg
- C:\smsc.exe
- C:\alg.exe
- %ALLUSERSPROFILE%\Documents\My Videos\PulgFile.log
- C:\mb.exe
- %PROGRAM_FILES%\Windows Media Player\hello_tt.sys
- %TEMP%\$inst\5.tmp
- %TEMP%\$inst\7.tmp
- %TEMP%\$inst\2.tmp
- %TEMP%\$inst\4.tmp
- %TEMP%\$inst\temp_0.tmp
- %HOMEPATH%\Favorites\МФ±¦Нш - МФЈЎОТПІ»¶.url
- %PROGRAM_FILES%\Windows Media Player\395.exe
- %PROGRAM_FILES%\Windows Media Player\X5.exe
- %PROGRAM_FILES%\Windows Media Player\MSINET.OCX
- %TEMP%\$inst\5.tmp
- %TEMP%\$inst\7.tmp
- %PROGRAM_FILES%\Windows Media Player\hello_tt.sys
- %TEMP%\$inst\temp_0.tmp
- %TEMP%\$inst\2.tmp
- %TEMP%\$inst\4.tmp
- ClassName: 'RegEdit_RegEdit' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''