Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\wowsystemcode123] 'Start' = '00000002'
- <SYSTEM32>\svchost.exe -k netsvcs
- [<HKCU>\Software\yahoo\pager]
- ClassName: 'YahooBuddyMain' WindowName: 'Yahoo! Messenger'
- ClassName: 'MSBLWindowClass' WindowName: ''
- <SYSTEM32>\wow66_447.dll
- %WINDIR%\syscheck
- ClassName: 'GxWindowClassD3d' WindowName: 'World of Warcraft'