Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'srlabsp' = '%PROGRAM_FILES%\Internet Explorer\PC\csrss.exe'
- '%PROGRAM_FILES%\Internet Explorer\PC\smss.exe'
- '%WINDIR%\twain_32\lsass.exe'
- %PROGRAM_FILES%\Internet Explorer\PC\smss.exe
- %PROGRAM_FILES%\Internet Explorer\PC\loaderrors.txt
- %WINDIR%\twain_32\lsass.exe
- %PROGRAM_FILES%\Internet Explorer\PC\MouseHook.dll
- %PROGRAM_FILES%\Internet Explorer\PC\KeyHook.dll
- %WINDIR%\twain_32\lsass.exe
- %PROGRAM_FILES%\Internet Explorer\PC\KeyHook.dll
- %PROGRAM_FILES%\Internet Explorer\PC\MouseHook.dll
- %PROGRAM_FILES%\Internet Explorer\PC\smss.exe
- 'ft#.##bdeppom.net':21
- 'www.tu##onz.com':80
- 'po####st1.hapto.org':1235
- www.tu##onz.com/cgi-bin/dede.pl
- DNS ASK ft#.##bdeppom.net
- DNS ASK www.tu##onz.com
- DNS ASK po####st1.hapto.org
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'CabinetWClass' WindowName: ''
- ClassName: 'IEFrame' WindowName: ''
- ClassName: '' WindowName: ''
- ClassName: 'TApplication' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'NDDEAgnt' WindowName: 'NetDDE Agent'