Техническая информация
- %HOMEPATH%\Start Menu\Programs\Startup\backup.exe
- скрытых файлов
- расширений файлов
- %PROGRAM_FILES%\backup.exe %PROGRAM_FILES%\
- C:\Far\Addons\SetUp\backup.exe C:\Far\Addons\SetUp\
- %ALLUSERSPROFILE%\Documents\My Pictures\backup.exe %ALLUSERSPROFILE%\Documents\My Pictures\
- %ALLUSERSPROFILE%\Documents\My Pictures\Sample Pictures\backup.exe %ALLUSERSPROFILE%\Documents\My Pictures\Sample Pictures\
- C:\Far\PlugDoc\backup.exe C:\Far\PlugDoc\
- %ALLUSERSPROFILE%\Favorites\backup.exe %ALLUSERSPROFILE%\Favorites\
- <Служебный элемент> <Служебный элемент>
- %ALLUSERSPROFILE%\Documents\My Music\Sample Playlists\data.exe %ALLUSERSPROFILE%\Documents\My Music\Sample Playlists\
- C:\Far\Addons\Colors\Custom Highlighting\backup.exe C:\Far\Addons\Colors\Custom Highlighting\
- %ALLUSERSPROFILE%\Documents\My Music\Sample Music\backup.exe %ALLUSERSPROFILE%\Documents\My Music\Sample Music\
- %ALLUSERSPROFILE%\Documents\My Music\Sample Playlists\000D7521\backup.exe %ALLUSERSPROFILE%\Documents\My Music\Sample Playlists\000D7521\
- C:\Far\Addons\Macros\backup.exe C:\Far\Addons\Macros\
- C:\Far\Addons\Colors\Default Highlighting\backup.exe C:\Far\Addons\Colors\Default Highlighting\
- C:\Far\Addons\Shell\backup.exe C:\Far\Addons\Shell\
- C:\Far\Plugins\data.exe C:\Far\Plugins\
- C:\Far\PlugDoc\Examples\Compare\backup.exe C:\Far\PlugDoc\Examples\Compare\
- C:\Far\Addons\Tables\Central European\backup.exe C:\Far\Addons\Tables\Central European\
- C:\Far\PlugDoc\Headers.c\backup.exe C:\Far\PlugDoc\Headers.c\
- C:\Far\Addons\XLat\data.exe C:\Far\Addons\XLat\
- %PROGRAM_FILES%\ComPlus Applications\backup.exe %PROGRAM_FILES%\ComPlus Applications\
- %ALLUSERSPROFILE%\Start Menu\Programs\backup.exe %ALLUSERSPROFILE%\Start Menu\Programs\
- %ALLUSERSPROFILE%\Documents\My Videos\backup.exe %ALLUSERSPROFILE%\Documents\My Videos\
- %CommonProgramFiles%\data.exe %CommonProgramFiles%\
- %ALLUSERSPROFILE%\Start Menu\backup.exe %ALLUSERSPROFILE%\Start Menu\
- %CommonProgramFiles%\Microsoft Shared\backup.exe %CommonProgramFiles%\Microsoft Shared\
- C:\Far\PlugDoc\Examples\System Restore.exe C:\Far\PlugDoc\Examples\
- C:\Far\Addons\Tables\backup.exe C:\Far\Addons\Tables\
- %HOMEPATH%\My Documents\My Music\backup.exe %HOMEPATH%\My Documents\My Music\
- %HOMEPATH%\My Documents\Downloads\backup.exe %HOMEPATH%\My Documents\Downloads\
- %HOMEPATH%\My Documents\backup.exe %HOMEPATH%\My Documents\
- %HOMEPATH%\Start Menu\Programs\backup.exe %HOMEPATH%\Start Menu\Programs\
- %HOMEPATH%\Start Menu\backup.exe %HOMEPATH%\Start Menu\
- %HOMEPATH%\My Documents\My Pictures\backup.exe %HOMEPATH%\My Documents\My Pictures\
- %HOMEPATH%\Favorites\Links\backup.exe %HOMEPATH%\Favorites\Links\
- %HOMEPATH%\backup.exe %HOMEPATH%\
- C:\Documents and Settings\backup.exe C:\Documents and Settings\
- C:\backup.exe \
- %HOMEPATH%\Favorites\backup.exe %HOMEPATH%\Favorites\
- %HOMEPATH%\Desktop\backup.exe %HOMEPATH%\Desktop\
- %HOMEPATH%\Cookies\backup.exe %HOMEPATH%\Cookies\
- %HOMEPATH%\Start Menu\Programs\Accessories\backup.exe %HOMEPATH%\Start Menu\Programs\Accessories\
- %ALLUSERSPROFILE%\Documents\My Music\backup.exe %ALLUSERSPROFILE%\Documents\My Music\
- %ALLUSERSPROFILE%\Documents\update.exe %ALLUSERSPROFILE%\Documents\
- C:\Far\Addons\backup.exe C:\Far\Addons\
- %ALLUSERSPROFILE%\Documents\My Music\My Playlists\backup.exe %ALLUSERSPROFILE%\Documents\My Music\My Playlists\
- C:\Far\Addons\Colors\backup.exe C:\Far\Addons\Colors\
- C:\Far\Addons\Archivers\backup.exe C:\Far\Addons\Archivers\
- %ALLUSERSPROFILE%\Desktop\backup.exe %ALLUSERSPROFILE%\Desktop\
- %HOMEPATH%\Start Menu\Programs\Administrative Tools\System Restore.exe %HOMEPATH%\Start Menu\Programs\Administrative Tools\
- %HOMEPATH%\Start Menu\Programs\Accessories\Entertainment\System Restore.exe %HOMEPATH%\Start Menu\Programs\Accessories\Entertainment\
- %HOMEPATH%\Start Menu\Programs\Accessories\Accessibility\backup.exe %HOMEPATH%\Start Menu\Programs\Accessories\Accessibility\
- C:\Far\backup.exe C:\Far\
- %ALLUSERSPROFILE%\backup.exe %ALLUSERSPROFILE%\
- %HOMEPATH%\Start Menu\Programs\Startup\backup.exe %HOMEPATH%\Start Menu\Programs\Startup\
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer] 'NoFolderOptions' = '00000001'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] 'NoFolderOptions' = '00000001'
- %ALLUSERSPROFILE%\Documents\My Pictures\Sample Pictures\backup.exe
- %PROGRAM_FILES%\backup.exe
- C:\Far\Addons\SetUp\backup.exe
- C:\Far\PlugDoc\backup.exe
- %CommonProgramFiles%\data.exe
- C:\Far\Addons\Shell\backup.exe
- %ALLUSERSPROFILE%\Favorites\backup.exe
- %ALLUSERSPROFILE%\Documents\My Pictures\backup.exe
- %ALLUSERSPROFILE%\Documents\My Music\Sample Playlists\data.exe
- %ALLUSERSPROFILE%\Documents\My Music\Sample Music\backup.exe
- C:\Far\Addons\Colors\Custom Highlighting\backup.exe
- C:\Far\Addons\Colors\Default Highlighting\backup.exe
- <Служебный элемент>
- C:\Far\Addons\Macros\backup.exe
- %ALLUSERSPROFILE%\Documents\My Music\Sample Playlists\000D7521\backup.exe
- C:\Far\Addons\XLat\data.exe
- %PROGRAM_FILES%\ComPlus Applications\backup.exe
- C:\Far\Plugins\data.exe
- C:\Far\PlugDoc\Headers.c\backup.exe
- %CommonProgramFiles%\MSSoap\backup.exe
- %CommonProgramFiles%\Microsoft Shared\DAO\backup.exe
- %ALLUSERSPROFILE%\Start Menu\Programs\Accessories\backup.exe
- C:\Far\PlugDoc\Examples\Compare\backup.exe
- %ALLUSERSPROFILE%\Documents\My Videos\backup.exe
- %ALLUSERSPROFILE%\Start Menu\backup.exe
- C:\Far\PlugDoc\Examples\System Restore.exe
- C:\Far\Addons\Tables\backup.exe
- C:\Far\Addons\Tables\Central European\backup.exe
- %CommonProgramFiles%\Microsoft Shared\backup.exe
- %ALLUSERSPROFILE%\Start Menu\Programs\backup.exe
- %ALLUSERSPROFILE%\Documents\My Music\My Playlists\backup.exe
- %HOMEPATH%\Favorites\Links\backup.exe
- %HOMEPATH%\Favorites\backup.exe
- %HOMEPATH%\Desktop\backup.exe
- %HOMEPATH%\My Documents\backup.exe
- %HOMEPATH%\My Documents\My Pictures\backup.exe
- %HOMEPATH%\My Documents\My Music\backup.exe
- %HOMEPATH%\My Documents\Downloads\backup.exe
- %HOMEPATH%\Cookies\backup.exe
- <Текущая директория>\_2a02848
- <Текущая директория>\temp.zip
- <Текущая директория>\System Restore.exe
- <Текущая директория>\<Имя вируса>.dat
- %HOMEPATH%\backup.exe
- C:\Documents and Settings\backup.exe
- C:\backup.exe
- C:\Far\Addons\backup.exe
- %ALLUSERSPROFILE%\Desktop\backup.exe
- C:\Far\backup.exe
- %ALLUSERSPROFILE%\Documents\update.exe
- C:\Far\Addons\Colors\backup.exe
- %ALLUSERSPROFILE%\Documents\My Music\backup.exe
- C:\Far\Addons\Archivers\backup.exe
- <Текущая директория>\%USERNAME%.zip
- %HOMEPATH%\Start Menu\Programs\Accessories\backup.exe
- %HOMEPATH%\Start Menu\Programs\backup.exe
- %HOMEPATH%\Start Menu\backup.exe
- %HOMEPATH%\Start Menu\Programs\Accessories\Accessibility\backup.exe
- %ALLUSERSPROFILE%\backup.exe
- %HOMEPATH%\Start Menu\Programs\Administrative Tools\System Restore.exe
- %HOMEPATH%\Start Menu\Programs\Accessories\Entertainment\System Restore.exe
- <Текущая директория>\%USERNAME%.zip
- <Текущая директория>\temp.zip
- <Текущая директория>\<Имя вируса>.dat
- <Текущая директория>\temp.zip
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'ExploreWClass' WindowName: ''
- ClassName: 'CabinetWClass' WindowName: ''