Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\IEProtect] 'Start' = '00000000'
- [<HKLM>\SYSTEM\ControlSet001\Services\IEProtect] 'ImagePath' = 'system32\drivers\IEProtect.sys'
- '%TEMP%\GLJ2.tmp' <DRIVERS>\IEProtect.sys
- C:\~GLH0001.TMP
- <DRIVERS>\~GLH0002.TMP
- <DRIVERS>\temp.000
- %TEMP%\~GLH0000.TMP
- %TEMP%\GLC1.tmp
- %TEMP%\GLJ2.tmp
- %TEMP%\GLK3.tmp
- %TEMP%\GLF5.tmp
- %TEMP%\GLC1.tmp
- %TEMP%\GLJ2.tmp
- <DRIVERS>\~GLH0002.TMP
- %TEMP%\GLK3.tmp
- <DRIVERS>\temp.000 в <DRIVERS>\~GLH0003.TMP
- <DRIVERS>\~GLH0003.TMP в <DRIVERS>\IEProtect.sys
- %TEMP%\~GLH0000.TMP в %TEMP%\GLF5.tmp
- C:\~GLH0001.TMP в C:\UNWISE.EXE
- ClassName: 'Shell_TrayWnd' WindowName: ''