Техническая информация
- [<HKCU>\Software\Microsoft\Windows NT\CurrentVersion\Windows] 'load' = '%WINDIR%\Media\fjeme76769.exe'
- %WINDIR%\twain_32\gzip.dll
- %WINDIR%\Media\gzip.dll
- %WINDIR%\Media\fjeme76769.exe
- %WINDIR%\twain_32\123.exe
- %WINDIR%\Media\etauclt.exe
- %WINDIR%\twain_32\sand.exe.gip
- %WINDIR%\Media\etauclt.exe
- %WINDIR%\twain_32\gzip.dll
- %WINDIR%\Media\fjeme76769.exe
- %WINDIR%\twain_32\123.exe