Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Calendar' = '"%PROGRAM_FILES%\Calendar\Calendar.exe"'
- %PROGRAM_FILES%\Calendar\Calendar.exe
- %HOMEPATH%\Desktop\Е©АъМбКѕ.lnk
- %HOMEPATH%\Start Menu\Programs\Е©АъМбКѕ\Е©АъР¶ФШ.lnk
- <SYSTEM32>\Com\1.1.5\WndHook.dll
- <SYSTEM32>\comarshal.dat
- <SYSTEM32>\Com\Config.cfg
- %HOMEPATH%\Start Menu\Programs\Е©АъМбКѕ\Е©АъМбКѕ.lnk
- %PROGRAM_FILES%\Calendar\Calendar.exe
- %TEMP%\nsl2.tmp\Senddata.dll
- %PROGRAM_FILES%\Calendar\EULA.txt
- %PROGRAM_FILES%\Calendar\uninstall.exe
- %PROGRAM_FILES%\Calendar\HtmlPeek.dll
- %TEMP%\nsl2.tmp\Senddata.dll
- 'r.###ntech.com':1207
- 'localhost':1040
- 'www.1c#t.cn':80
- www.1c#t.cn/in.php
- DNS ASK r.###ntech.com
- DNS ASK www.1c#t.cn
- ClassName: 'SHELLDLL_DefView' WindowName: ''
- ClassName: 'SysListView32' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'Progman' WindowName: 'Program Manager'