Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] 'WebCheck' = '{E6FB5E20-DE35-11CF-9C87-00AA005127ED}'
- %PROGRAM_FILES%\VideoACodec\codec.exe
- <SYSTEM32>\xcopy.exe "C:\DbgLog.log" Z:\ /Y
- <SYSTEM32>\xcopy.exe <Служебный элемент>
- <SYSTEM32>\xcopy.exe "%WINDIR%\Minidump\*.*" "Z:\Minidump" /Y /I
- %WINDIR%\explorer.exe
- <SYSTEM32>\ctfmon.exe
- <SYSTEM32>\cmd.exe /c ""C:\startup_local.bat" "
- %PROGRAM_FILES%\VideoACodec\uninstall.exe
- <SYSTEM32>\webcpl.dll
- %TEMP%\nst2.tmp
- %PROGRAM_FILES%\VideoACodec\codec.exe
- %PROGRAM_FILES%\VideoACodec\codec.exe
- '69.##.160.102':80
- 69.##.160.102/client.php?id###############################
- ClassName: 'OleMainThreadWndClass' WindowName: ''
- ClassName: 'SysListView32' WindowName: ''
- ClassName: 'CSCHiddenWindow' WindowName: ''
- ClassName: 'SystemTray_Main' WindowName: ''
- ClassName: 'Progman' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'BaseBar' WindowName: 'ChanApp'
- ClassName: 'Proxy Desktop' WindowName: ''