Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Internet Explorer\Extensions\{F2648D0C-0033-4E34-A0DA-473C42B0A99A}] 'Exec' = 'http://www.vogoo.net/?from=button&user='
- [<HKLM>\SYSTEM\ControlSet001\Services\ShellHWDetection] 'Start' = '00000002'
- %TEMP%\nse2.tmp\ns4.tmp cmd.exe /c net start "Shell Hardware Detection"
- %TEMP%\nse2.tmp\ns3.tmp sc config "ShellHWDetection" start= auto
- <SYSTEM32>\net1.exe start "Shell Hardware Detection"
- <SYSTEM32>\sc.exe config "ShellHWDetection" start= auto
- %TEMP%\nse2.tmp\AccessControl.dll
- %TEMP%\nse2.tmp\System.dll
- <SYSTEM32>\°Щ¶ИТ»ПВ.ico
- %TEMP%\nse2.tmp\nsExec.dll
- %TEMP%\nse2.tmp\ns3.tmp
- %TEMP%\nse2.tmp\ns4.tmp
- %TEMP%\nse2.tmp\nsExec.dll
- %TEMP%\nse2.tmp\System.dll
- %TEMP%\nse2.tmp\AccessControl.dll
- %TEMP%\nse2.tmp\ns3.tmp
- %TEMP%\nse2.tmp\ns4.tmp