Техническая информация
- <SYSTEM32>\wbem\mofcomp.exe "<Текущая директория>\23.mof"
- bdagent.exe
- [<HKCU>\Software\Microsoft\Internet Explorer\Download] 'RunInvalidSignatures' = '00000001'
- [<HKCU>\Software\Microsoft\Internet Explorer\Download] 'CheckExeSignatures' = 'no'
- <Текущая директория>\23.mof
- <Текущая директория>\BackUp\Shortcut to startup_local.lnk
- %APPDATA%\Malware Catcher 2009\cookies.sqlite
- <Текущая директория>\PatchHst.ini
- %TEMP%\tmp1.tmp
- <Текущая директория>\MalwareList.ini
- %ALLUSERSPROFILE%\Application Data\SystemFeed\mctch.ini
- <DRIVERS>\etc\host_new
- <Текущая директория>\SystemFeed\vd952342.bd
- <Текущая директория>\prm.ini
- %ALLUSERSPROFILE%\Application Data\SystemFeed\mctch.ini
- <Текущая директория>\prm.ini
- <Текущая директория>\PatchHst.ini
- %TEMP%\tmp1.tmp
- <Текущая директория>\MalwareList.ini
- <DRIVERS>\etc\hosts
- <DRIVERS>\etc\host_new
- 'up###fnow.cn':80
- DNS ASK up###fnow.cn
- ClassName: 'System Security' WindowName: 'System Security'
- ClassName: 'TForm1' WindowName: 'Antivirus Plus (Unregistered)'
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'TMainWindowMCT' WindowName: ''
- ClassName: '' WindowName: ''
- ClassName: '#32770' WindowName: 'AntivirusXP'
- ClassName: 'TForm1' WindowName: 'WinPC Antivirus'
- ClassName: 'TpavMainForm' WindowName: 'Personal Antivirus'
- ClassName: 'TMainWindow' WindowName: 'Privacy center'