Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] '{A771A1EC-975E-4718-AF5E-A3F552D45C41}' = 'Sysapi.dll'
- '%TEMP%\RarSFX0\pakins\Sysins.exe'
- <SYSTEM32>\Sysapi.dll
- <SYSTEM32>\Receml.dll
- %TEMP%\RarSFX0\pakins\Receml.dll
- %TEMP%\RarSFX0\pakins\Sysins.exe
- %TEMP%\RarSFX0\pakins\Sysapi.dll
- <SYSTEM32>\Receml.dll
- <SYSTEM32>\Sysapi.dll
- %TEMP%\RarSFX0\pakins\Sysins.exe
- %TEMP%\RarSFX0\pakins\Sysapi.dll
- %TEMP%\RarSFX0\pakins\Receml.dll
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: 'EDIT' WindowName: '(null)'