Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'SUPERAntiSpyware' = 'SUPERAntiSpyware'
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'SBAMTray' = 'vipre'
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'SBRegRebootCleaner' = 'vipre2'
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Zillya Antivirus' = 'Zillya Antivirus'
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'QHSafeTray' = '360'
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'AvastUI.exe' = 'avast'
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'AVGUI.exe' = 'avg'
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Avira SystrayStartTrigger' = 'avira'
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'ClamWin' = 'clam'
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'IseUI' = 'comodo'
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'COMODO Internet Security' = 'comodo2'
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'egui' = 'eset'
- Межсетевой экран (Брандмауэр Windows)
- Системный антивирус (Защитник Windows)
- Средство контроля пользовательских учетных записей (UAC)
- %TEMP%\$inst\2.tmp
- %TEMP%\$inst\temp_0.tmp
- %ProgramFiles%\MusicBee Plugin\Madara.jpg
- %TEMP%\$inst\temp_0.tmp