Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\fkbuoe08] 'Start' = '00000000'
- <SYSTEM32>\rundll32.exe "<SYSTEM32>\fkbuoe08",DllCanUnloadNow
- <SYSTEM32>\fkbuoe08.dll
- <DRIVERS>\fkbuoe08.sys
- %TEMP%\tmp1.CAB
- %TEMP%\tmp2.CAB
- %TEMP%\tmp2.CAB
- %TEMP%\tmp1.CAB
- ClassName: 'Shell_TrayWnd' WindowName: ''