Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler] '{C4560D12-CE25-4A2E-A5D4-B5070FCBE282}' = 'csiddll'
- скрытых файлов
- расширений файлов
- <SYSTEM32>\hhcmd.exe
- <SYSTEM32>\Dofake.exe
- <SYSTEM32>\regsvr32.exe /s <SYSTEM32>\tata_1.dll
- %WINDIR%\explorer.exe
- <SYSTEM32>\regsvr32.exe /s <SYSTEM32>\tddle.dll
- <SYSTEM32>\rundll32.exe ccy9194.dll , InstallMyDll
- <SYSTEM32>\OemWpsSetup20.98.exe_1
- <SYSTEM32>\OemWpsSetup20.98.exe_0
- <SYSTEM32>\OemWpsSetup20.98.exe_2
- <SYSTEM32>\OemWpsSetup20.98.exe
- <SYSTEM32>\OemWpsSetup20.98.exe_3
- <SYSTEM32>\hhcmd.exe
- <SYSTEM32>\dllcache\ccy9194.dll
- <SYSTEM32>\ccy9194.dll
- <SYSTEM32>\tddle.dll
- <SYSTEM32>\tata_1.dll
- <SYSTEM32>\Dofake.exe
- <SYSTEM32>\OemWpsSetup20.98.exe_2
- <SYSTEM32>\OemWpsSetup20.98.exe_3
- <SYSTEM32>\OemWpsSetup20.98.exe_1
- <SYSTEM32>\Dofake.exe
- <SYSTEM32>\OemWpsSetup20.98.exe_0
- 'www.fy##ppy.cn':80
- www.fy##ppy.cnhttp://www.fyhappy.cn/OemWpsSetup20.98.exe
- DNS ASK www.fy##ppy.cn
- ClassName: 'SystemTray_Main' WindowName: ''
- ClassName: 'CSCHiddenWindow' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'Proxy Desktop' WindowName: ''
- ClassName: 'BaseBar' WindowName: 'ChanApp'
- ClassName: 'SysListView32' WindowName: ''