Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Windows Services' = '%WINDIR%\FrWall.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] 'C:\Arquivos de programas\Internet Explorer\6.5\IEXPLORE.EXE' = 'C:\Arquivos de programas\Internet Explorer\6.5\IEXPLORE.EXE:*:Enabled:IEXPLORE.EXE'
- ClassName: 'PROCMON_WINDOW_CLASS' WindowName: ''
- ClassName: 'RegMonClass' WindowName: ''
- ClassName: 'FileMonClass' WindowName: ''
- C:\Arquivos de programas\Internet Explorer\6.5\IEXPLORE.EXE
- %ALLUSERSPROFILE%\Application Data\TEMP:BEEA8369
- ClassName: 'TFFramesto' WindowName: 'FFramesto'
- ClassName: 'TFrmFrwall' WindowName: ''
- ClassName: 'ThunderRT6FormDC' WindowName: 'Shareware Cheater v 3.0'
- ClassName: 'ThunderRT6FormDC' WindowName: ''