Техническая информация
- [<HKCU>\SYSTEM\CurrentControlSet\Services\276AB706] 'ImagePath' = '%WINDIR%\Fonts\B29C2716.EXE -k'
- [<HKLM>\SYSTEM\ControlSet001\Services\276AB706] 'ImagePath' = '%WINDIR%\Fonts\B29C2716.EXE -k'
- [<HKLM>\SYSTEM\ControlSet001\Services\276AB706] 'Start' = '00000002'
- '%WINDIR%\Fonts\B29C2716.EXE' -k
- '<Текущая директория>\setup1371.exe'
- '<SYSTEM32>\cmd.exe' /c %WINDIR%\Fonts\copy2090000.bat
- %WINDIR%\Explorer.EXE
- <SYSTEM32>\winlogon.exe
- %WINDIR%\Fonts\3B828F25.DLL
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\update[1].txt
- %WINDIR%\Fonts\llk1366086503.h
- <Текущая директория>\setup1371.exe
- %WINDIR%\Fonts\copy2090000.bat
- %WINDIR%\Fonts\B29C2716.EXE
- %WINDIR%\Fonts\llk1366086503.h
- <Текущая директория>\setup1371.exe
- 'www.20##.366ent.com':80
- 'localhost':1036
- www.20##.366ent.com/2009//update.txt
- DNS ASK www.20##.366ent.com
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'EDIT' WindowName: ''