Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] '' = '%APPDATA%\WinService.exe'
- %APPDATA%\WinService.exe
- %WINDIR%\explorer.exe
- <SYSTEM32>\dumprep.exe 1508 -dm 7 7 "%TEMP%\WER12b2.dir00\explorer.exe.mdmp" 16325836412028200
- %WINDIR%\Explorer.EXE
- ClassName: 'TibiaClient' WindowName: ''
- %TEMP%\WER12b2.dir00\explorer.exe.mdmp
- %APPDATA%\WinService.dll
- %APPDATA%\WinService.exe
- %APPDATA%\WinService.dll
- %APPDATA%\WinService.exe
- 'localhost':80
- localhost/engine/online.php?da###############################################
- localhost/engine/autoupdate
- ClassName: 'OleMainThreadWndClass' WindowName: ''
- ClassName: 'SysListView32' WindowName: ''
- ClassName: 'CSCHiddenWindow' WindowName: ''
- ClassName: 'SystemTray_Main' WindowName: ''
- ClassName: 'Proxy Desktop' WindowName: ''
- ClassName: 'Indicator' WindowName: ''
- ClassName: 'BaseBar' WindowName: 'ChanApp'
- ClassName: 'Shell_TrayWnd' WindowName: ''