Техническая информация
- %ALLUSERSPROFILE%\Access\Guarder.exe
- %ALLUSERSPROFILE%\Access\explorer.exe
- %WINDIR%\explorer.exe /idlist,:292:2868,%PROGRAM_FILES%
- %WINDIR%\explorer.exe
- %ALLUSERSPROFILE%\Access\Guarder.exe
- %ALLUSERSPROFILE%\Round\12234
- %ALLUSERSPROFILE%\Access\RCX1.tmp
- %ALLUSERSPROFILE%\Round\Record.dat
- %ALLUSERSPROFILE%\Access\explorer.exe
- %ALLUSERSPROFILE%\Round\Record.dat
- %ALLUSERSPROFILE%\Access\explorer.exe
- 'www.yi##olm.com':8080
- DNS ASK www.yi##olm.com
- '<IP-адрес в локальной сети>':1036
- ClassName: '' WindowName: '????'
- ClassName: 'PPL Flash Window' WindowName: ''
- ClassName: '' WindowName: '??????????????????????'
- ClassName: 'PPS????????' WindowName: ''
- ClassName: '' WindowName: '??????????'
- ClassName: 'CSCHiddenWindow' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'PPLAbmWindow' WindowName: ''
- ClassName: 'SystemTray_Main' WindowName: ''
- ClassName: 'PPTV????????' WindowName: ''
- ClassName: 'BaseBar' WindowName: 'ChanApp'
- ClassName: 'SysListView32' WindowName: ''
- ClassName: 'Proxy Desktop' WindowName: ''
- ClassName: '' WindowName: ''
- ClassName: 'CabinetWClass' WindowName: ''
- ClassName: '????????' WindowName: ''
- ClassName: '' WindowName: '????????'
- ClassName: '' WindowName: '????????????'
- ClassName: 'what' WindowName: ''