Техническая информация
- %HOMEPATH%\Start Menu\Programs\Startup\Admins Menu.lnk
- %HOMEPATH%\Start Menu\Programs\Startup\Users Menu.lnk
- '<SYSTEM32>\mshta.exe' "<SYSTEM32>\wactmgrenc.hta"
- '<SYSTEM32>\binrecycler.exe'
- %HOMEPATH%\Local Settings\<INETFILES>\Content.IE5\KHMHGZ4F\tfnacc[1]
- %TEMP%\hiryehp
- %TEMP%\aut1.tmp
- %HOMEPATH%\Local Settings\<INETFILES>\Content.IE5\KHMHGZ4F\info[1].mp3
- %HOMEPATH%\Local Settings\<INETFILES>\Content.IE5\2VAZY7AN\tfnacc[1]
- %HOMEPATH%\Local Settings\<INETFILES>\Content.IE5\U98D4X8H\tfnacc[1]
- %HOMEPATH%\Local Settings\<INETFILES>\Content.IE5\U98D4X8H\info[1].mp3
- <SYSTEM32>\binrecycler.exe
- %TEMP%\$inst\temp_0.tmp
- %TEMP%\$inst\2.tmp
- <SYSTEM32>\binrecycler.ini
- <SYSTEM32>\Uninstall.ini
- <SYSTEM32>\wact.exe
- <SYSTEM32>\wactmgrenc.hta
- %TEMP%\aut1.tmp
- %TEMP%\hiryehp
- %TEMP%\$inst\temp_0.tmp
- %TEMP%\$inst\2.tmp
- '10#.#37.240.5':80
- 'localhost':1038
- http://10#.#37.240.5/freeze/posts/tfnacc
- http://10#.#37.240.5/freeze/info.mp3
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''