Техническая информация
- [<HKLM>\SOFTWARE\Classes\CLSID\{28343837-4229-3099-9153-068063565684}\Shell\Open\Command] '' = '%ProgramFiles%\Soft\explorer\2345Desktop\2345Desktop.exe command=site direct=true'
- [<HKLM>\SYSTEM\ControlSet001\Services\360Lom] 'ImagePath' = '%TEMP%\360Lom.sys'
- [<HKLM>\SYSTEM\ControlSet001\Services\hy5.6] 'ImagePath' = '%TEMP%\dm0NRqq.sys'
- %WINDIR%\Explorer.EXE
- <SYSTEM32>\svchost.exe
- NtOpenProcess, драйвер-обработчик: dm0NRqq.sys
- %HOMEPATH%\Start Menu\Programs\1q9ig.html
- %HOMEPATH%\Desktop\НшЦ·µјєЅ9.lnk
- %ProgramFiles%\Soft\explorer\2345Desktop\2345НшЦ·µјєЅ.lnk
- %HOMEPATH%\Start Menu\a7h38.html
- %TEMP%\360Lom.sys
- %TEMP%\dm0NRqq.sys
- %HOMEPATH%\My Documents\6eqbq.html
- %ProgramFiles%\Soft\explorer\2345Desktop\2345Desktop.exe
- C:\ybc1.0.dll
- %TEMP%\Memory174296.res
- %TEMP%\lazycommon.dll
- C:\ЕдЦГПо.ini
- %HOMEPATH%\Favorites\2urrn.html
- %WINDIR%\2345Desktop.exe
- %ProgramFiles%\Internet Explorer\ieproxy.ini
- %HOMEPATH%\My Documents\6eqbq.html
- %TEMP%\dm0NRqq.sys
- %TEMP%\360Lom.sys
- %HOMEPATH%\Start Menu\a7h38.html
- C:\ЕдЦГПо.ini
- %HOMEPATH%\Favorites\2urrn.html
- %HOMEPATH%\Start Menu\Programs\1q9ig.html
- %TEMP%\360Lom.sys
- %TEMP%\dm0NRqq.sys
- ClassName: 'Shell_TrayWnd' WindowName: ''