Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Booker' = '%PROGRAM_FILES%\FreshBook\FreshBook.exe'
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Booker' = '"%PROGRAM_FILES%\FreshBook\FreshBook.exe" '
- '%PROGRAM_FILES%\FreshBook\FreshBook.exe'
- %ALLUSERSPROFILE%\Start Menu\Programs\FreshBook\FreshBook.lnk
- %ALLUSERSPROFILE%\Start Menu\Programs\FreshBook\Uninstall.lnk
- %HOMEPATH%\Desktop\FreshBook.lnk
- %PROGRAM_FILES%\FreshBook\FreshBook.exe
- %PROGRAM_FILES%\FreshBook\Uninstall.exe
- 'www.fr###book.cn':80
- www.fr###book.cn/autoregister.php?fr##########
- DNS ASK www.fr###book.cn
- ClassName: '(null)' WindowName: 'FreshBook v1.021a'
- ClassName: '(null)' WindowName: 'FreshBook v1.021'
- ClassName: '(null)' WindowName: 'FreshBook v1.022'
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: '(null)' WindowName: 'FreshBook v1.022a'
- ClassName: '(null)' WindowName: 'FreshBook v1.020a'
- ClassName: '(null)' WindowName: 'FreshBook v1.018a'
- ClassName: '(null)' WindowName: 'FreshBook v1.018'
- ClassName: '(null)' WindowName: 'FreshBook v1.019'
- ClassName: '(null)' WindowName: 'FreshBook v1.020'
- ClassName: '(null)' WindowName: 'FreshBook v1.019a'