Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] 'WindowsMedia' = '{68a1e6a9-f8ec-49b9-8952-b56061cede0c}'
- <SYSTEM32>\regsvr32.exe /s %TEMP%\windll.dll
- <SYSTEM32>\ntvdm.exe -f -i1
- %TEMP%\msi-factory-2.1.1007.0.log
- %TEMP%\windll.dll
- %CommonProgramFiles%\Windows\WindowsMedia.dll
- %WINDIR%\Temp\scs4.tmp
- %TEMP%\msi-factory-2.1.1007.0.exe
- %TEMP%\nsw2.tmp\NSISdl.dll
- %WINDIR%\Temp\scs3.tmp
- %TEMP%\windll.dll
- %TEMP%\nsw2.tmp\NSISdl.dll
- %WINDIR%\Temp\scs3.tmp
- %WINDIR%\Temp\scs4.tmp
- '20#.#26.167.92':80
- 20#.#26.167.92/update/check_d.php?tn#######################
- ClassName: 'IEFrame' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'ConsoleWindowClass' WindowName: 'ntvdm-998.99c.380001'
- ClassName: 'MozillaUIWindowClass' WindowName: ''