Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] '{7488E47D-E8F3-41C0-B2DA-9B2BD8803A80}' = ''
- %WINDIR%\Tasks\EfEPEaD4ZpVMUXrDbS.inf
- %WINDIR%\Tasks\vC6ykXbjUGCVeCJa.ico
- %PROGRAM_FILES%\НтДЬВМЙ«ІҐ·ЕЖч\Data\guint.exe
- %TEMP%\_ir_sf7_temp_0\irsetup.exe "__IRAFN:<Полный путь к вирусу>"
- 360tray.exe
- %PROGRAM_FILES%\НтДЬВМЙ«ІҐ·ЕЖч\Data\guint.exe
- %HOMEPATH%\Desktop\НтДЬІҐ·ЕЖч.lnk
- %PROGRAM_FILES%\НтДЬВМЙ«ІҐ·ЕЖч\Uninstall\uninstall.xml
- %PROGRAM_FILES%\НтДЬВМЙ«ІҐ·ЕЖч\НтДЬІҐ·ЕЖч.exe
- %HOMEPATH%\Start Menu\Programs\НтДЬВМЙ«ІҐ·ЕЖч\НтДЬІҐ·ЕЖч.lnk
- %PROGRAM_FILES%\НтДЬВМЙ«ІҐ·ЕЖч\Uninstall\IRIMG3.JPG
- %HOMEPATH%\Start Menu\Programs\НтДЬВМЙ«ІҐ·ЕЖч\Р¶ФШ НтДЬВМЙ«ІҐ·ЕЖч.lnk
- %PROGRAM_FILES%\НтДЬВМЙ«ІҐ·ЕЖч\Uninstall\IRIMG1.JPG
- %PROGRAM_FILES%\НтДЬВМЙ«ІҐ·ЕЖч\Uninstall\IRIMG2.JPG
- %TEMP%\_ir_sf7_temp_0\IRIMG1.JPG
- %TEMP%\_ir_sf7_temp_0\IRIMG2.JPG
- %TEMP%\_ir_sf7_temp_0\irsetup.exe
- %TEMP%\_ir_sf7_temp_0\irsetup.dat
- %TEMP%\_ir_sf7_temp_0\IRIMG3.JPG
- %PROGRAM_FILES%\НтДЬВМЙ«ІҐ·ЕЖч\Uninstall\uninstall.dat
- %WINDIR%\НтДЬВМЙ«ІҐ·ЕЖч\uninstall.exe
- %WINDIR%\НтДЬВМЙ«ІҐ·ЕЖч Setup Log.txt
- %PROGRAM_FILES%\НтДЬВМЙ«ІҐ·ЕЖч\Uninstall\uni1.tmp
- %PROGRAM_FILES%\НтДЬВМЙ«ІҐ·ЕЖч\Data\guint.exe
- %PROGRAM_FILES%\НтДЬВМЙ«ІҐ·ЕЖч\Uninstall\uni1.tmp
- %TEMP%\_ir_sf7_temp_0\irsetup.dat
- ClassName: 'Shell_TrayWnd' WindowName: ''