Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Easy' = '%APPDATA%\Founder Systems\easy.exe'
- '%APPDATA%\Founder Systems\easy.exe'
- '%WINDIR%\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe' /silent /codebase "%APPDATA%\Founder Systems\ie2.dll"
- %APPDATA%\Founder Systems\manifest.json
- %APPDATA%\Founder Systems\jquery.js
- %APPDATA%\Founder Systems\page.html
- %APPDATA%\Founder Systems\easy.exe
- %APPDATA%\Founder Systems\ie2.dll
- %APPDATA%\Founder Systems\icon_32.png
- %TEMP%\tmp1.tmp
- <Текущая директория>\SQLite.Interop.dll
- %APPDATA%\Founder Systems\home.js
- %APPDATA%\Founder Systems\icon_16.png
- %APPDATA%\Founder Systems\icon_128.png
- %TEMP%\tmp1.tmp
- 'ac#####ontentall.com':80
- 'localhost':1038
- ac#####ontentall.com/?r=#####
- DNS ASK ac#####ontentall.com
- ClassName: 'IEFrame' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'Indicator' WindowName: ''
- ClassName: '' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''