Техническая информация
- %APPDATA%\microsoft\windows\start menu\programs\startup\realteksb.lnk
- <SYSTEM32>\tasks\realtek sound blaster
- ClassName: 'OLLYDBG', WindowName: ''
- ClassName: 'GBDYLLO', WindowName: ''
- ClassName: 'pediy06', WindowName: ''
- ClassName: 'FilemonClass', WindowName: ''
- ClassName: '', WindowName: 'File Monitor - Sysinternals: www.sysinternals.com'
- ClassName: 'PROCMON_WINDOW_CLASS', WindowName: ''
- ClassName: '', WindowName: 'Process Monitor - Sysinternals: www.sysinternals.com'
- ClassName: 'RegmonClass', WindowName: ''
- ClassName: '', WindowName: 'Registry Monitor - Sysinternals: www.sysinternals.com'
- %TEMP%\nsvc3d0.tmp
- %TEMP%\nsvc3d1.tmp\system.dll
- %APPDATA%\winter\police_16.exe
- %APPDATA%\software\1.exe
- %APPDATA%\realtek sound blaster\realteksb.exe
- %TEMP%\is-rbu92.tmp\1.tmp
- %TEMP%\is-4rr3g.tmp\_isetup\_regdll.tmp
- %TEMP%\is-4rr3g.tmp\_isetup\_setup64.tmp
- %TEMP%\is-4rr3g.tmp\_isetup\_shfoldr.dll
- %TEMP%\is-4rr3g.tmp\istask.dll
- %TEMP%\is-4rr3g.tmp\vclstylesinno.dll
- %TEMP%\is-4rr3g.tmp\metroblue.vsf
- %TEMP%\is-4rr3g.tmp\wizardform.bitmapimage1.bmp
- %TEMP%\nsvc3d1.tmp\system.dll
- ClassName: '18467-41' WindowName: ''
- ClassName: 'Edit' WindowName: ''
- '%APPDATA%\winter\police_16.exe'
- '%APPDATA%\software\1.exe'
- '%TEMP%\is-rbu92.tmp\1.tmp' /SL5="$90232,16663327,66048,%APPDATA%\Software\1.exe"
- '%APPDATA%\realtek sound blaster\realteksb.exe'