Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] 'Zipuvvip' = '{FB1A9712-B39A-4252-89C7-D8E8863C33E9}'
- [<HKCU>\Software\Microsoft\Internet Account Manager]
- <SYSTEM32>\disottxt.dll
- <SYSTEM32>\basurwin.dll
- %TEMP%\_is135968.ini
- %TEMP%\_is135765.ini
- <SYSTEM32>\adewmax.dll
- %TEMP%\UUU2.tmp
- %TEMP%\UUU1.tmp
- %TEMP%\UUU3.tmp
- <SYSTEM32>\seledrtf32.dll
- %TEMP%\_is135765.ini
- %TEMP%\_is135968.ini
- %TEMP%\UUU3.tmp
- %TEMP%\UUU1.tmp
- %TEMP%\UUU2.tmp