Техническая информация
- [<HKLM>\SOFTWARE\Classes\ppds\Shell\Open\Command] '' = '"Rundll32.exe" "%WINDIR%\msdos32\HtaskDll.dll" orthset'
- %TEMP%\is-IU139.tmp\is-57HBQ.tmp /SL4 $40036 "<Полный путь к вирусу>" 794928 52224
- <SYSTEM32>\rundll32.exe "%WINDIR%\msdos32\cmucode.cmcod" cmoutput
- %WINDIR%\msdos32\cmucode.cmcod
- %WINDIR%\msdos32\Config.ini
- %WINDIR%\msdos32\5.htm
- %WINDIR%\msdos32\3.htm
- %WINDIR%\msdos32\4.htm
- %WINDIR%\msdos32\infofile.tmp
- %WINDIR%\msdos32\page.htm
- %WINDIR%\msdos32\page1.html
- %WINDIR%\ucdos.lnk
- %WINDIR%\msdos32\rd.txt
- %WINDIR%\msdos32\ucdos.ppds
- %TEMP%\is-LDLKO.tmp\InstallDll.dll
- %PROGRAM_FILES%\pumsoft\is-Q7LTU.tmp
- %TEMP%\is-LDLKO.tmp\_isetup\_shfoldr.dll
- %TEMP%\is-IU139.tmp\is-57HBQ.tmp
- %TEMP%\is-LDLKO.tmp\_isetup\_RegDLL.tmp
- %PROGRAM_FILES%\pumsoft\is-JLAD3.tmp
- %WINDIR%\msdos32\1.htm
- %WINDIR%\msdos32\2.htm
- %WINDIR%\msdos32\Install.tmp
- %PROGRAM_FILES%\pumsoft\is-1SNV3.tmp
- %PROGRAM_FILES%\pumsoft\unins000.dat
- ClassName: '' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''