Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\RunOnce] 'mqv848d9' = '%HOMEPATH%\mqv848d9\lptsb.vbs'
- Диспетчера задач (Taskmgr)
- '%HOMEPATH%\mqv848d9\k.exe' rJdtm.GYL
- '%WINDIR%\Microsoft.NET\Framework\v2.0.50727\RegSvcs.exe'
- %WINDIR%\Explorer.EXE
- %HOMEPATH%\mqv848d9\run.vbs
- %HOMEPATH%\mqv848d9\lptsb.vbs
- %TEMP%\%USERNAME%2.txt
- %TEMP%\%USERNAME%8
- %TEMP%\%USERNAME%7
- %HOMEPATH%\mqv848d9\k.exe
- %HOMEPATH%\mqv848d9\syQfiV.ZCY
- %HOMEPATH%\mqv848d9\rJdtm.GYL
- %HOMEPATH%\mqv848d9\xshuhhldtabz.cmd
- %HOMEPATH%\mqv848d9\KBGFoh.KVL
- %HOMEPATH%\mqv848d9\KBGFoh.KVL
- %HOMEPATH%\mqv848d9\lptsb.vbs
- %HOMEPATH%\mqv848d9\xshuhhldtabz.cmd
- %HOMEPATH%\mqv848d9\syQfiV.ZCY
- %HOMEPATH%\mqv848d9\k.exe
- %HOMEPATH%\mqv848d9\rJdtm.GYL
- %TEMP%\%USERNAME%8
- %TEMP%\%USERNAME%2.txt
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'EDIT' WindowName: ''