Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'windefinder.exe' = '<Полный путь к файлу>'
- %HOMEPATH%\Start Menu\Programs\Startup\windefinder.exe.exe
- %WINDIR%\explorer.exe
- %HOMEPATH%\My Documents\Downloads\Reference AssembliesA-J.exe
- %HOMEPATH%\My Documents\Downloads\Uninstall InformationA-J.exe
- %HOMEPATH%\My Documents\Downloads\Outlook ExpressA-J.exe
- %HOMEPATH%\My Documents\Downloads\NetMeetingA-J.exe
- %HOMEPATH%\My Documents\Downloads\Online ServicesA-J.exe
- %HOMEPATH%\My Documents\Downloads\xeroxA-J.exe
- %TEMP%\dw.log
- %HOMEPATH%\My Documents\Downloads\WindowsUpdateA-J.exe
- %HOMEPATH%\My Documents\Downloads\Windows Media PlayerA-J.exe
- %HOMEPATH%\My Documents\Downloads\Windows NTA-J.exe
- %HOMEPATH%\My Documents\Downloads\MSN Gaming ZoneA-J.exe
- %HOMEPATH%\My Documents\Downloads\Internet ExplorerA-J.exe
- %HOMEPATH%\My Documents\Downloads\MessengerA-J.exe
- %HOMEPATH%\My Documents\Downloads\FireFoxA-J.exe
- %HOMEPATH%\My Documents\Downloads\Common FilesA-J.exe
- %HOMEPATH%\My Documents\Downloads\ComPlus ApplicationsA-J.exe
- %HOMEPATH%\My Documents\Downloads\MSBuildA-J.exe
- %HOMEPATH%\My Documents\Downloads\MSNA-J.exe
- %HOMEPATH%\My Documents\Downloads\Movie MakerA-J.exe
- %HOMEPATH%\My Documents\Downloads\microsoft frontpageA-J.exe
- %HOMEPATH%\My Documents\Downloads\Microsoft.NETA-J.exe
- '%CommonProgramFiles%\Microsoft Shared\DW\DW20.EXE' -x -s 372
- '%WINDIR%\explorer.exe'