Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'et199amgr' = 'control.exe "<SYSTEM32>\et199acsp.dll"'
- [<HKLM>\SYSTEM\ControlSet001\Services\eBankService] 'ImagePath' = '<SYSTEM32>\rundll32.exe <SYSTEM32>\ET199A~1.DLL,eb_service'
- %TEMP%\nso2.tmp
- %TEMP%\nse3.tmp\UserInfo.dll
- %ProgramFiles%\EnterSafe\ET199Auto\<Имя файла>.exe
- %ProgramFiles%\EnterSafe\ET199Auto\ebankcsp_1028.lng
- %ProgramFiles%\EnterSafe\ET199Auto\ebankcsp_1033.lng
- %ProgramFiles%\EnterSafe\ET199Auto\ebankcsp_2052.lng
- <SYSTEM32>\et199acsp.dll
- <SYSTEM32>\et199acsp.sig
- <SYSTEM32>\et199acsp_s.dll
- %TEMP%\nse3.tmp\System.dll
- %ALLUSERSPROFILE%\Start Menu\Programs\EnterSafe\ET199Auto\USBKEY Manager.lnk
- %ALLUSERSPROFILE%\Start Menu\Programs\EnterSafe\ET199Auto\Uninstall ET199Auto.lnk
- %TEMP%\nse3.tmp\System.dll
- %TEMP%\nse3.tmp\UserInfo.dll
- %ProgramFiles%\EnterSafe\ET199Auto\<Имя файла>.exe в %ProgramFiles%\EnterSafe\ET199Auto\uninst.exe
- '<SYSTEM32>\rundll32.exe' <SYSTEM32>\ET199A~1.DLL,eb_service
- '<SYSTEM32>\rundll32.exe' "<SYSTEM32>\et199acsp.dll",CPlApplet