Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'sys' = '%WINDIR%\wan.exe'
- %PROGRAM_FILES%\Live\uninstall.exe
- %PROGRAM_FILES%\Live\messenger.exe
- %ALLUSERSPROFILE%\Application Data\Microsoft\WLSetup\Logs\2011-07-04_15-03_adc-hw9qslc2.log
- %WINDIR%\wan.exe
- %ALLUSERSPROFILE%\Application Data\Microsoft\WLSetup\wlt1.tmp
- %TEMP%\{B985D92E-A5D4-4597-97EE-9EA2EAC1682C}\wls1.tmp
- %PROGRAM_FILES%\Live\messenger.exe
- %TEMP%\$inst\temp_0.tmp
- %TEMP%\$inst\2.tmp
- %PROGRAM_FILES%\Live\wan.exe
- %PROGRAM_FILES%\Live\uninstall.exe
- %TEMP%\$inst\2.tmp
- %TEMP%\$inst\temp_0.tmp
- 'localhost':1039
- 'g.##ve.com':80
- '20#.#6.232.182':80
- 'wpad.localdomain':80
- g.##ve.com/1rewlive3cat/es/catalog-web.cab
- wpad.localdomain/wpad.dat
- 20#.#6.232.182/pki/crl/products/CSPCA.crl
- DNS ASK g.##ve.com
- DNS ASK wpad.localdomain
- DNS ASK crl.microsoft.com
- ClassName: 'Indicator' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''