Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'IMEPADSV' = '%APPDATA%\Microsoft\Windows\imepadsv.exe'
- %APPDATA%\Microsoft\Windows\imepadsv.exe /install
- %TEMP%\GCA1.tmp\setupjp.exe
- %APPDATA%\Microsoft\Windows\gdiplus.dll
- %APPDATA%\Microsoft\Windows\7-zip32.dll
- %APPDATA%\Microsoft\Windows\vb6jp.dll
- %APPDATA%\Microsoft\Windows\imepadsv.exe
- %APPDATA%\Microsoft\Windows\msvbvm60.dll
- %TEMP%\GCA1.tmp\~jx00200.tmp
- %TEMP%\GCA1.tmp\~jx00201.tmp
- %TEMP%\GCA1.tmp\setupjp.exe
- %TEMP%\GCA1.tmp\~jx00202.tmp
- %TEMP%\GCA1.tmp\~jx00204.tmp
- %TEMP%\GCA1.tmp\~jx00203.tmp
- %APPDATA%\Microsoft\Windows\msvbvm60.dll
- %APPDATA%\Microsoft\Windows\imepadsv.exe
- %APPDATA%\Microsoft\Windows\vb6jp.dll
- %APPDATA%\Microsoft\Windows\7-zip32.dll
- %APPDATA%\Microsoft\Windows\gdiplus.dll
- %TEMP%\GCA1.tmp\~jx00202.tmp
- %TEMP%\GCA1.tmp\~jx00203.tmp
- %TEMP%\GCA1.tmp\~jx00204.tmp
- %TEMP%\GCA1.tmp\setupjp.exe
- %TEMP%\GCA1.tmp\~jx00200.tmp
- %TEMP%\GCA1.tmp\~jx00201.tmp
- ClassName: 'Indicator' WindowName: ''