Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] 'Oletoapi' = '{AA4CA769-BAC5-4A32-9948-56DAAC5A7E67}'
- <SYSTEM32>\gifulocx\decihart\vgaladot.dll
- <SYSTEM32>\excopkey.dll
- %TEMP%\_is161406.ini
- <SYSTEM32>\ntumipx.dll
- <SYSTEM32>\crtisfax.dll
- %TEMP%\UUU2.tmp
- %TEMP%\UUU1.tmp
- %TEMP%\UUU3.tmp
- <SYSTEM32>\subibapi32.dll
- %TEMP%\UUU3.tmp
- %TEMP%\_is161406.ini
- %TEMP%\UUU1.tmp
- %TEMP%\UUU2.tmp