Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'DWQueuedReporting' = '"%CommonProgramFiles%\Microsoft Shared\DW\dwtrig20.exe" -t'
- '%TEMP%\svchost.exe'
- '%TEMP%\Updater.exe'
- '%WINDIR%\Microsoft.NET\Framework\v2.0.50727\vbc.exe' /noconfig @"%TEMP%\gp5gm2kt.cmdline"
- %TEMP%\dw.log
- %TEMP%\290EB.dmp
- <SYSTEM32>\d3d9caps.dat
- <SYSTEM32>\d3d9caps.tmp
- %WINDIR%\pchealth\ERRORREP\QSIGNOFF\2ABB7.txt
- %WINDIR%\pchealth\ERRORREP\QSIGNOFF\dwq.snt
- %WINDIR%\pchealth\ERRORREP\QSIGNOFF\2ABB7.cab
- %TEMP%\Updater.exe
- %TEMP%\b63A48w.resources
- %TEMP%\RSH.resources
- %TEMP%\svchost.exe
- %TEMP%\gp5gm2kt.cmdline
- %TEMP%\gp5gm2kt.out
- %TEMP%\MSNPSharp.dll
- %TEMP%\gp5gm2kt.0.vb
- %TEMP%\gp5gm2kt.0.vb
- %TEMP%\gp5gm2kt.cmdline
- %TEMP%\290EB.dmp
- <SYSTEM32>\d3d9caps.dat
- %TEMP%\2A3F6.tmp
- <SYSTEM32>\d3d9caps.tmp в <SYSTEM32>\d3d9caps.dat
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: 'SysListView32' WindowName: '(null)'