Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'me1' = '<LS_APPDATA>\Macromedia\TestApp.exe'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'me' = '<LS_APPDATA>\Macromedia\flashutill.exe'
- <LS_APPDATA>\Macromedia\YandexInstalker.exe
- <LS_APPDATA>\Macromedia\TestApp.exe
- [<HKLM>\SYSTEM\ControlSet001\Hardware Profiles\0001\Software\Microsoft\windows\CurrentVersion\Internet Settings] 'ProxyEnable' = '00000001'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Internet Settings] 'ProxyEnable' = '00000001'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Internet Settings] 'ProxyServer' = 'http=127.0.0.1:8083'
- <LS_APPDATA>\Macromedia\TestApp.exe
- <LS_APPDATA>\Macromedia\flashutill.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\aff_c[1]
- <LS_APPDATA>\Macromedia\YandexInstalker.exe
- <LS_APPDATA>\Macromedia\Resources.resources
- <LS_APPDATA>\Macromedia\ProxyService.dll
- <LS_APPDATA>\Macromedia\TestApp.exe.config
- 'localhost':8083
- 'tr#####g.actionads.ru':80
- 'localhost':1041
- 'wp#d':80
- 'vk###este.ru':21
- tr#####g.actionads.ru/aff_c?of######################
- wp#d/wpad.dat
- DNS ASK tr#####g.actionads.ru
- DNS ASK vk###este.ru
- DNS ASK wp#d
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'Indicator' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''