Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'GEUU20056.exe' = '<SYSTEM32>\GEUU20056.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\SCardSvr] 'Start' = '00000001'
- '<SYSTEM32>\GEUU20056.exe'
- <SYSTEM32>\GECN20056.dat
- <SYSTEM32>\GECFG20056.dat
- <SYSTEM32>\CheckFileVer20056.dll
- <SYSTEM32>\GEUU20056.exe
- %ALLUSERSPROFILE%\Start Menu\Programs\єЈМ©·ЅФІ20056\Р¶ФШ.lnk
- <SYSTEM32>\uninst20056.exe
- C:\htlog\htlogToolDigua2014-04-23_18-07-44.log
- %ALLUSERSPROFILE%\Start Menu\Programs\єЈМ©·ЅФІ20056\УГ»§№¤ѕЯ.lnk
- %TEMP%\nsh3.tmp\System.dll
- %TEMP%\nsh3.tmp\processwork.dll
- %TEMP%\nsr2.tmp
- %TEMP%\nsh3.tmp\UserInfo.dll
- <SYSTEM32>\GEC20056.dll
- <SYSTEM32>\GECSP20056.dll
- <SYSTEM32>\GER20056.dll
- <SYSTEM32>\GEA20056.dll
- %TEMP%\nsh3.tmp\UserInfo.dll
- %TEMP%\nsh3.tmp\System.dll
- %TEMP%\nsh3.tmp\processwork.dll
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'