Техническая информация
- [<HKCU>\Software\Headlight\GetRight]
- [<HKLM>\SOFTWARE\FileZilla Client]
- [<HKCU>\SOFTWARE\FileZilla Client]
- [<HKCU>\Software\RIT\The Bat!]
- [<HKLM>\SOFTWARE\FlashFXP]
- [<HKCU>\Software\IMVU]
- [<HKCU>\Software\mIRC]
- [<HKCU>\Software\Cyberlink\PowerDVD]
- [<HKCU>\Software\Microsoft\Windows Live Mail]
- [<HKCU>\Software\Microsoft\Windows Mail]
- [<HKCU>\software\Yahoo\pager]
- %APPDATA%\Mozilla\Firefox\profiles.ini
- %TEMP%\aut1.tmp
- %TEMP%\CCleaner by lrxy\branding.dll
- %TEMP%\aut2.tmp
- %TEMP%\CCleaner by lrxy\CCleaner.dat
- %TEMP%\aut3.tmp
- %TEMP%\CCleaner by lrxy\CCleaner.exe
- %TEMP%\aut1.tmp
- %TEMP%\aut2.tmp
- %TEMP%\aut3.tmp
- 'wp#d':80
- 'download.windowsupdate.com':80
- http://11#.#11.111.1/wpad.dat via wp#d
- http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt via download.windowsupdate.com
- DNS ASK wp#d
- DNS ASK www.download.windowsupdate.com
- '%TEMP%\CCleaner by lrxy\CCleaner.exe'