Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'ADN Start' = '<SYSTEM32>\VXRIKF\ADN.exe'
- <Текущая директория>\spcmn211.exe
- <SYSTEM32>\VXRIKF\ADN.exe
- Библиотека-обработчик для всех процессов: <SYSTEM32>\VXRIKF\ADN.001
- %TEMP%\is-M54VU.tmp\cs.bmp
- %TEMP%\is-M54VU.tmp\ct.bmp
- %TEMP%\is-M54VU.tmp\nl.bmp
- %TEMP%\is-M54VU.tmp\style_generic.bmp
- %TEMP%\is-M54VU.tmp\us.bmp
- %TEMP%\is-M54VU.tmp\uk.bmp
- %TEMP%\is-M54VU.tmp\br.bmp
- %TEMP%\is-M54VU.tmp\es.bmp
- %TEMP%\is-M54VU.tmp\ve.bmp
- %TEMP%\is-M54VU.tmp\fr.bmp
- %TEMP%\is-M54VU.tmp\it.bmp
- %TEMP%\is-M54VU.tmp\pl.bmp
- %TEMP%\is-M54VU.tmp\style_xp.bmp
- <SYSTEM32>\VXRIKF\AKV.exe
- <SYSTEM32>\VXRIKF\ADN.exe
- <Текущая директория>\spcmn211.exe
- <SYSTEM32>\VXRIKF\ADN.004
- <SYSTEM32>\VXRIKF\ADN.001
- <SYSTEM32>\VXRIKF\ADN.002
- %TEMP%\is-M54VU.tmp\match.dll
- %TEMP%\is-M54VU.tmp\icon_app.bmp
- %TEMP%\is-M54VU.tmp\icon_disks.bmp
- %TEMP%\is-5OVBM.tmp\is-KOEUT.tmp
- %TEMP%\is-M54VU.tmp\_isetup\_RegDLL.tmp
- %TEMP%\is-M54VU.tmp\_isetup\_shfoldr.dll
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: '' WindowName: 'AKLMW'