Техническая информация
- '<SYSTEM32>\regsvr32.exe' /s "%ProgramFiles%\GOSave\lYfWNuI9kqG2Nx.x64.dll"
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0c855aae-f3c5-438a-9768-cc042c5e282c}']
- %ProgramFiles%\GOSave\lYfWNuI9kqG2Nx.x64.dll
- %ProgramFiles%\GOSave\lYfWNuI9kqG2Nx.dat
- %ALLUSERSPROFILE%\Application Data\GOSave\pJ1qJbbwHCW6KEz.exe
- %ALLUSERSPROFILE%\Application Data\6e958a80feb239af\{C87834EB-A2A0-B9D4-AA9A-C263D1191051}.20161209201312
- %ALLUSERSPROFILE%\Application Data\GOSave\pJ1qJbbwHCW6KEz.dat
- %ProgramFiles%\GOSave\lYfWNuI9kqG2Nx.tlb
- %TEMP%\07e103ee\lYfWNuI9kqG2Nx.dll
- %TEMP%\07e103ee\pJ1qJbbwHCW6KEz.dat
- %TEMP%\07e103ee\lYfWNuI9kqG2Nx.tlb
- %ProgramFiles%\GOSave\lYfWNuI9kqG2Nx.dll
- %TEMP%\07e103ee\lYfWNuI9kqG2Nx.x64.dll
- %TEMP%\07e103ee\lYfWNuI9kqG2Nx.tlb
- %TEMP%\07e103ee\lYfWNuI9kqG2Nx.x64.dll
- %TEMP%\07e103ee\pJ1qJbbwHCW6KEz.dat
- %TEMP%\07e103ee\lYfWNuI9kqG2Nx.dll