Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\Iprip] 'Start' = '00000002'
- %TEMP%\GLJ2.tmp <SYSTEM32>\pwfsh.dll
- %TEMP%\set.exe
- %TEMP%\~GLH0003.TMP
- %WINDIR%\inf\~GLH0002.TMP
- <SYSTEM32>\~GLH0004.TMP
- %WINDIR%\Help\~GLH0006.TMP
- %WINDIR%\inf\~GLH0005.TMP
- %TEMP%\GLJ2.tmp
- %TEMP%\GLC1.tmp
- %TEMP%\GLG4.tmp
- %WINDIR%\~GLH0001.TMP
- <SYSTEM32>\~GLH0000.TMP
- %TEMP%\GLJ2.tmp
- %TEMP%\GLC1.tmp
- %TEMP%\set.exe
- %TEMP%\GLG4.tmp
- <SYSTEM32>\~GLH0004.TMP в <SYSTEM32>\niprp.dll
- %WINDIR%\inf\~GLH0005.TMP в %WINDIR%\inf\iplbk.inf
- %WINDIR%\Help\~GLH0006.TMP в %WINDIR%\Help\PWREP.CHI
- %TEMP%\~GLH0003.TMP в %TEMP%\set.exe
- <SYSTEM32>\~GLH0000.TMP в <SYSTEM32>\pwfsh.dll
- %WINDIR%\~GLH0001.TMP в %WINDIR%\kentgo.log
- %WINDIR%\inf\~GLH0002.TMP в %WINDIR%\inf\optkec.inf
- ClassName: 'Shell_TrayWnd' WindowName: ''