Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{348C2D66-EBB3-E743-1681-234DFD2A5FD7}]
- %TEMP%\2ac37aa7\pjq.dat
- %ALLUSERSPROFILE%\adblocker\pjq.exe
- %ProgramFiles(x86)%\adblocker\yz.x64.dll
- %ProgramFiles(x86)%\adblocker\yz.dat
- %ProgramFiles(x86)%\adblocker\yz.tlb
- %ProgramFiles(x86)%\adblocker\yz.dll
- %APPDATA%\mozilla\firefox\profiles\gn7ryp3k.default\extensions\staged\oyouoei@ppwp.org\install.rdf
- %APPDATA%\mozilla\firefox\profiles\gn7ryp3k.default\extensions\staged\oyouoei@ppwp.org\content\bg.js
- %ALLUSERSPROFILE%\adblocker\pjq.dat
- %APPDATA%\mozilla\firefox\profiles\gn7ryp3k.default\extensions\staged\oyouoei@ppwp.org\chrome.manifest
- %TEMP%\2ac37aa7\oyouoei@ppwp.org\bootstrap.js
- %TEMP%\2ac37aa7\oyouoei@ppwp.org\chrome.manifest
- %TEMP%\2ac37aa7\oyouoei@ppwp.org\install.rdf
- %TEMP%\2ac37aa7\oyouoei@ppwp.org\content\bg.js
- %TEMP%\2ac37aa7\yz.dll
- %TEMP%\2ac37aa7\yz.tlb
- %TEMP%\2ac37aa7\yz.x64.dll
- %APPDATA%\mozilla\firefox\profiles\gn7ryp3k.default\extensions\staged\oyouoei@ppwp.org\bootstrap.js
- %ALLUSERSPROFILE%\62e901e1a1adfb8f\{4820778d-ab0d-6d18-c316-52a6a0e1d507}.20220619001138
- %TEMP%\2ac37aa7\pjq.dat
- %TEMP%\2ac37aa7\yz.x64.dll
- %TEMP%\2ac37aa7\yz.tlb
- %TEMP%\2ac37aa7\yz.dll
- %TEMP%\2ac37aa7\oyouoei@ppwp.org\content\bg.js
- %TEMP%\2ac37aa7\oyouoei@ppwp.org\install.rdf
- %TEMP%\2ac37aa7\oyouoei@ppwp.org\chrome.manifest
- %TEMP%\2ac37aa7\oyouoei@ppwp.org\bootstrap.js
- '%WINDIR%\syswow64\regsvr32.exe' /s "%ProgramFiles(x86)%\Adblocker\Yz.x64.dll"
- '<SYSTEM32>\regsvr32.exe' /s "%ProgramFiles(x86)%\Adblocker\Yz.x64.dll"