Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'windows_xp' = '%ProgramFiles%\Igjog\Twue.exe /windows_xp /{3B5B2876-FABA-4498-85C5-9290AA50E096}'
- '%TEMP%\g81\windows_xp_setup.exe'
- %ProgramFiles%\Igjog\moscev\pat.xml
- %ProgramFiles%\Igjog\livoof.exe
- %CommonProgramFiles%\System\Ole DB\MSPat.xml
- %ProgramFiles%\Igjog\moscev\sasvus.dll
- %TEMP%\g81\setup.ini
- %TEMP%\g81\gTemp.dat
- %ProgramFiles%\Igjog\bavose.exe
- %TEMP%\g81\jTemp.dat
- %ProgramFiles%\Igjog\bavose.exe в %ProgramFiles%\Igjog\Twue.exe
- %ProgramFiles%\Igjog\livoof.exe в %ProgramFiles%\Igjog\Voeu.exe
- %TEMP%\g81\gTemp.dat в %TEMP%\g81\windows_xp_setup.exe
- ClassName: 'Shell_TrayWnd' WindowName: ''