Техническая информация
- [<HKLM>\SOFTWARE\Classes\exefile\shell\open\command] '' = '%PROGRAM_FILES%\alggui.exe "%1" %*'
- [<HKLM>\SYSTEM\ControlSet001\Services\AdbUpd] 'Start' = '00000002'
- %PROGRAM_FILES%\svchost.exe
- %PROGRAM_FILES%\AKM Antivirus 2010 Pro\AKM Antivirus 2010 Pro.exe
- %TEMP%\win1.tmp
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\action3[1]
- %PROGRAM_FILES%\nuar.old
- %PROGRAM_FILES%\alggui.exe
- %PROGRAM_FILES%\adc32.dll
- %PROGRAM_FILES%\wp3.dat
- %HOMEPATH%\Start Menu\Programs\AKM Antivirus 2010 Pro\AKM Antivirus 2010 Pro.lnk
- %PROGRAM_FILES%\AKM Antivirus 2010 Pro\AKM Antivirus 2010 Pro.exe
- %HOMEPATH%\Desktop\AKM Antivirus 2010 Pro.lnk
- %PROGRAM_FILES%\svchost.exe
- %PROGRAM_FILES%\wp4.dat
- 'nt##.#s.wisc.edu':123
- 'nt##.#bg.netnod.se':123
- 'to##.#sno.navy.mil':123
- 'ti##.nist.gov':123
- 'ti##.#indows.com':123
- 'localhost':1037
- 'co######.instituteofbianco.com':80
- co######.instituteofbianco.com/stat/action3.cgi?p=########
- DNS ASK to##.#sno.navy.mil
- DNS ASK ti##.nist.gov
- DNS ASK nt##.#bg.netnod.se
- DNS ASK nt##.#s.wisc.edu
- DNS ASK ti##.#indows.com
- DNS ASK co######.instituteofbianco.com
- 'localhost':1045
- 'localhost':1049
- 'localhost':1046
- 'localhost':1047
- 'localhost':1048
- 'localhost':1044
- 'localhost':1040
- 'localhost':1036
- 'localhost':1035
- 'localhost':1043
- 'localhost':1042
- 'localhost':1041
- ClassName: 'Shell_TrayWnd' WindowName: ''