Техническая информация
- %HOMEPATH%\Start Menu\Programs\Startup\E51aEB.lnk
- '%APPDATA%ЬMжЯЪлмлалШХкбЬХа2\E51aEB.exe'
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- %APPDATA%ЬMжЯЪлмлалШХкбЬХа2ЬкЬлЪЫ2ХЮеЦ
- %APPDATA%ЬMжЯЪлмлалШХкбЬХа2\E51aEB.exe
- <SYSTEM32>\PerfStringBackup.TMP
- <SYSTEM32>\wbem\Performance\WmiApRpl.ini
- %TEMP%\~DF29CA.tmp
- ClassName: '' WindowName: '4?21????????????15??0???????0? - G????? C?????'
- ClassName: '' WindowName: '4Ы21ЪЯЦХЪеаХЪЫЦп15ЬХ0ЫЦчаЭЦЯ0Я - GклЦеа CеЪлжЯ'
- ClassName: '' WindowName: 'A???????? ?? G????????????'
- ClassName: '' WindowName: 'AбжЯдлЦЫЪ Ьл GжлдЫайЪемлкб'