Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Windows' = '%APPDATA%\System\Oracle\smss.exe'
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Windows' = '%WINDIR%\explorer\smss.exe'
- '%APPDATA%\System\Oracle\smss.exe'
- %APPDATA%\System\Oracle\smss.exe
- %APPDATA%\System\Oracle\azioklmpx\hzid\hzid.txt
- %TEMP%\nsp4.tmp\polypod.dll
- %APPDATA%\Uninstall.exe
- %APPDATA%\7w1Tkp2YdW.exe
- %APPDATA%\12 The Notorious B.I.G. - Me & My Bitch.flac
- %TEMP%\nsv2.tmp\polypod.dll
- %APPDATA%\System\Oracle\azioklmpx\hzid\hzid.txt
- %APPDATA%\System\Oracle\smss.exe
- %TEMP%\nsp4.tmp\polypod.dll
- %TEMP%\nsv2.tmp\polypod.dll
- 'en##r432.eu':80
- en##r432.euhttp://enter432.eu/panel/includes/verif.php
- DNS ASK en##r432.eu
- ClassName: 'Indicator' WindowName: ''