Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'x32x' = '%WINDIR%\xwrm.exe'
- %CommonProgramFiles%\Microsoft Shared\DW\byqabijra.zyi
- %CommonProgramFiles%\Microsoft Shared\MSInfo\yaibyqyaj.qia
- %PROGRAM_FILES%\FireFox\qjjrrzqyj.aaa
- %CommonProgramFiles%\Microsoft Shared\DW\rabriazzz.ari
- %TEMP%\qizajr.rai
- %WINDIR%\xwrm.exe
- C:\Far2\byjzbyjay.aya
- %CommonProgramFiles%\Microsoft Shared\DW\byqabijra.zyi
- %CommonProgramFiles%\Microsoft Shared\MSInfo\yaibyqyaj.qia
- %PROGRAM_FILES%\FireFox\qjjrrzqyj.aaa
- %WINDIR%\xwrm.exe
- C:\Far2\byjzbyjay.aya
- %CommonProgramFiles%\Microsoft Shared\DW\rabriazzz.ari