Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'LetsCool' = '%PROGRAM_FILES%\LetsCool\LetsCool.exe'
- [<HKCU>\Software\Microsoft\Internet Explorer\Desktop\Components\0] 'Source' = 'About:Home'
- '%PROGRAM_FILES%\LetsCool\LetsCool.exe'
- '%PROGRAM_FILES%\LetsCool\image\DecodeJPG.exe'
- %PROGRAM_FILES%\LetsCool\image\0.jpg
- %PROGRAM_FILES%\LetsCool\image\0.bmp
- %PROGRAM_FILES%\LetsCool\uninst.exe
- <SYSTEM32>\CoolBho.dll
- %PROGRAM_FILES%\LetsCool\coolupdate.exe
- %TEMP%\nsz2.tmp
- %PROGRAM_FILES%\LetsCool\cooldown.exe
- %PROGRAM_FILES%\LetsCool\image\DecodeJPG.exe
- %PROGRAM_FILES%\LetsCool\LetsCool.exe
- %PROGRAM_FILES%\LetsCool\image\0.jpg
- %PROGRAM_FILES%\LetsCool\image\DecodeJPG.exe
- %TEMP%\~DFB592.tmp
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: 'SysListView32' WindowName: '(null)'
- ClassName: '(null)' WindowName: 'cool66byCool66comcn123'