Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'googleupdata' = '%PROGRAM_FILES%\DvdStyles\conhost.exe'
- '%PROGRAM_FILES%\DvdStyles\conhost.exe' %TEMP%\conhost.exe
- '%TEMP%\is-BD2LU.tmp\998GameCenter_simple.tmp' /SL5="$100E4,10290647,52224,%TEMP%\998GameCenter_simple.exe"
- '%TEMP%\998GameCenter_simple.exe'
- '%TEMP%\conhost.exe'
- '<SYSTEM32>\svchost.exe'
- '<SYSTEM32>\cmd.exe' /c %TEMP%\temp123.bat
- <SYSTEM32>\svchost.exe
- <SYSTEM32>\cmd.exe
- %TEMP%\is-U0R30.tmp\Mfc71.dll
- %TEMP%\is-U0R30.tmp\SetupProtect.dll
- %TEMP%\is-U0R30.tmp\_isetup\_isdecmp.dll
- %TEMP%\is-U0R30.tmp\protect.zip
- %TEMP%\is-U0R30.tmp\Msvcp71.dll
- %TEMP%\is-U0R30.tmp\Msvcr71.dll
- %TEMP%\conhost.exe
- %TEMP%\temp123.bat
- %TEMP%\998GameCenter_simple.exe
- %TEMP%\is-U0R30.tmp\_isetup\_shfoldr.dll
- %TEMP%\is-BD2LU.tmp\998GameCenter_simple.tmp
- %PROGRAM_FILES%\DvdStyles\conhost.exe
- %TEMP%\conhost.exe
- 'localhost':1041
- '21#.#35.56.180':8321
- 'localhost':1036
- ClassName: 'games998wnd' WindowName: '(null)'
- ClassName: '(null)' WindowName: 'clientassignmentserver'
- ClassName: 'Indicator' WindowName: '(null)'
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'