Техническая информация
- %HOMEPATH%\Start Menu\Programs\Startup\shost.exe
- '%TEMP%\oavnyvaapf\UnRAR.exe' e -p74pxgfhdw5r5110le5b599b4amwxqv napnkeitqb.exe %TEMP%\oavnyvaapf\
- '%TEMP%\oavnyvaapf\guqvgs.exe'
- '%TEMP%\oavnyvaapf\TibiaMC.sfx.exe'
- '%TEMP%\TibiaMC.exe'
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- '<SYSTEM32>\wscript.exe' "%TEMP%\oavnyvaapf\jtlsjzmvarg.vbs"
- ClassName: 'TibiaClient' WindowName: ''
- %TEMP%\msvcr110d.dll
- %TEMP%\msvcp110d.dll
- %TEMP%\oavnyvaapf\guqvgs.exe
- %TEMP%\TibiaMC.exe
- %TEMP%\oavnyvaapf\napnkeitqb.exe
- %TEMP%\oavnyvaapf\jtlsjzmvarg.vbs
- %TEMP%\oavnyvaapf\UnRAR.exe
- %TEMP%\oavnyvaapf\TibiaMC.sfx.exe
- <SYSTEM32>\PerfStringBackup.TMP
- <SYSTEM32>\wbem\Performance\WmiApRpl.ini
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'EDIT' WindowName: ''