Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\SystemUpdate] 'Start' = '00000002'
- %PROGRAM_FILES%\Internet Explorer\SVCH0ST.EXE
- %PROGRAM_FILES%\Windows Media Player\cwincul.exe
- C:\cwincul.exe
- <SYSTEM32>\regsvr32.exe /s IEHelper.dll
- %PROGRAM_FILES%\Internet Explorer\SVCH0ST.EXE
- %PROGRAM_FILES%\Windows Media Player\cwincul.exe
- %PROGRAM_FILES%\Internet Explorer\protector.sys
- <SYSTEM32>\IEHelper.dll
- C:\cwincul.exe
- C:\cwincul.dll
- C:\cwincul.dat
- C:\cwincul.sev
- %PROGRAM_FILES%\Internet Explorer\SVCH0ST.EXE
- %PROGRAM_FILES%\Windows Media Player\cwincul.exe
- C:\cwincul.exe
- C:\cwincul.dll
- C:\cwincul.dat
- '21#.#32.224.126':5150
- '65.##.192.126':80
- ClassName: 'easyclickplus9' WindowName: 'Microsoft Internet Explorer'
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'EDIT' WindowName: ''