Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'SystemAutorun' = '%HOMEPATH%\Start Menu\Programs\Startup\SystemAutorun.exe'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'LoaderLocker' = '%APPDATA%\system app\loader.exe'
- %HOMEPATH%\Start Menu\Programs\Startup\SystemAutorun.exe
- %APPDATA%\Tor Project\zlib1.dll
- %APPDATA%\Tor Project\tor.exe
- %APPDATA%\Tor Project\ssleay32.dll
- %APPDATA%\system app\loader.exe
- %HOMEPATH%\Desktop\GemWare.lnk
- %APPDATA%\GemWare\node-webkit.exe
- %APPDATA%\system app\API.dll
- %APPDATA%\Tor Project\libssp-0.dll
- %APPDATA%\Tor Project\libevent_extra-2-0-5.dll
- %APPDATA%\Tor Project\libevent_core-2-0-5.dll
- %APPDATA%\Tor Project\libeay32.dll
- %APPDATA%\Tor Project\libevent-2-0-5.dll
- %APPDATA%\Tor Project\libgmpxx-4.dll
- %APPDATA%\Tor Project\libgmp-10.dll
- %APPDATA%\Tor Project\libgcc_s_sjlj-1.dll
- 'ge##ar.pw':80
- 'wp#d':80
- ge##ar.pw/net/all/tor/tor.exe
- ge##ar.pw/net/all/tor/zlib1.dll
- ge##ar.pw/net/all/tor/libssp-0.dll
- ge##ar.pw/net/all/tor/ssleay32.dll
- ge##ar.pw/net/4.0/SystemAutorun.exe
- ge##ar.pw/install/GemWare.exe
- ge##ar.pw/net/4.0/loader.exe
- ge##ar.pw/net/4.0/API.dll
- ge##ar.pw/net/all/tor/libevent_core-2-0-5.dll
- ge##ar.pw/net/all/tor/libevent_extra-2-0-5.dll
- wp#d/wpad.dat
- ge##ar.pw/net/all/tor/libeay32.dll
- ge##ar.pw/net/all/tor/libgmp-10.dll
- ge##ar.pw/net/all/tor/libgmpxx-4.dll
- ge##ar.pw/net/all/tor/libevent-2-0-5.dll
- ge##ar.pw/net/all/tor/libgcc_s_sjlj-1.dll
- DNS ASK ge##ar.pw
- DNS ASK wp#d
- ClassName: 'Indicator' WindowName: ''