Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'JZH.Zorrito.Kesy' = '<SYSTEM32>\kesy.exe'
- <SYSTEM32>\explorer.exe
- <SYSTEM32>\Kesy.exe
- <SYSTEM32>\Kesy.exe
- <SYSTEM32>\Kesy Revolution.scr
- <SYSTEM32>\explorer.exe
- <SYSTEM32>\Kesy Revolution.scr
- <SYSTEM32>\Kesy.exe
- <SYSTEM32>\explorer.exe
- %TEMP%\~DF262C.tmp
- ClassName: '' WindowName: 'utilidad de configuracion del sistema'
- ClassName: '' WindowName: 'editor del registro'
- ClassName: 'Indicator' WindowName: ''
- ClassName: '' WindowName: 'Administrador de tareas de windows'