Техническая информация
- [<HKLM>\SOFTWARE\Classes\HgdViewer\shell\open\command] '' = '"\GroupwareViewer.exe" "%1"'
- 'C:\hanbiromessenger.exe'
- Библиотека-обработчик для всех процессов: C:\HanbiroHookV2.dll
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3] '1407' = '00000000'
- C:\HanbiroDisk.exe
- C:\HanLanderFilter.ax
- C:\GroupwareViewer.exe
- C:\GroupwareProxy.exe
- %TEMP%\nss2.tmp\System.dll
- %HOMEPATH%\My Documents\Messenger\Setting.xml
- C:\HanSourceFilter.ax
- C:\CapSourceFilter.ax
- C:\OutlookSync.exe
- C:\Update.exe
- C:\hancol.exe
- %TEMP%\nss2.tmp\nsProcess.dll
- C:\hanbiromessenger.exe
- C:\sqlite3.dll
- C:\Conference.exe
- C:\HanPostit.exe
- C:\HanbiroHookv2.dll
- %TEMP%\nss2.tmp\System.dll
- %TEMP%\nss2.tmp\nsProcess.dll
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: 'MS_WebcheckMonitor' WindowName: '(null)'
- ClassName: 'MS_AutodialMonitor' WindowName: '(null)'