Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'winguard' = '"%PROGRAM_FILES%\winguard\launcher.exe" "%PROGRAM_FILES%\winguard\winguardup.exe"'
- %PROGRAM_FILES%\winguard\winguard.exe /install
- %HOMEPATH%\Start Menu\Programs\winguard\А©°Ўµе ИЁЖдАМБц.lnk
- %PROGRAM_FILES%\winguard\А©°Ўµе.url
- %PROGRAM_FILES%\winguard\launcher.exe
- %HOMEPATH%\Start Menu\Programs\winguard\А©°Ўµе.lnk
- %PROGRAM_FILES%\winguard\uninstall.exe
- %HOMEPATH%\Desktop\А©°Ўµе.lnk
- %HOMEPATH%\Start Menu\Programs\winguard\А©°Ўµе Б¦°Е.lnk
- %PROGRAM_FILES%\winguard\winguard.exe
- %TEMP%\nsn3.tmp\System.dll
- %TEMP%\nss2.tmp
- %PROGRAM_FILES%\winguard\winguardup.exe
- %PROGRAM_FILES%\winguard\winguardres.dll
- %PROGRAM_FILES%\winguard\wgclean.dll
- %PROGRAM_FILES%\winguard\wgblock.dll
- %TEMP%\nsn3.tmp\System.dll
- 'www.wi###ard.co.kr':80
- www.wi###ard.co.kr/count/install.php?ma##################################
- DNS ASK www.wi###ard.co.kr
- ClassName: 'Indicator' WindowName: ''