Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'WindowsUpdatesKB92320' = '<SYSTEM32>\wansvc.exe'
- [<HKLM>\SYSTEM\ControlSet002\Services\DF5Serv] 'Start' = '00000002'
- [<HKLM>\SYSTEM\ControlSet002\Services\DF5Serv] 'ImagePath' = '<SYSTEM32>\microsoft-windows-updates.exe /service'
- [<HKLM>\SYSTEM\ControlSet001\Services\DF5Serv] 'Start' = '00000002'
- [<HKLM>\SYSTEM\ControlSet001\Services\DF5Serv] 'ImagePath' = '<SYSTEM32>\microsoft-windows-updates.exe /service'
- '<SYSTEM32>\Vbf.csi' C: FFD3-32AC
- '<SYSTEM32>\VolID.exe'
- <SYSTEM32>\VolID.exe
- <SYSTEM32>\MSINET.OCX
- C:\programdata\anyplace control 4\hoststate.dat
- <SYSTEM32>\Vbf.csi
- %PROGRAM_FILES%\Youtube!\Youtube Plug-In\Uninstall.exe
- %PROGRAM_FILES%\Youtube!\Youtube Plug-In\Uninstall.ini
- <SYSTEM32>\MSINET.DEP
- <SYSTEM32>\microsoft-windows-updates.exe
- <SYSTEM32>\randomizewindows.txt
- <SYSTEM32>\wansvc.exe
- %TEMP%\$inst\2.tmp
- %TEMP%\$inst\temp_0.tmp
- C:\programdata\anyplace control 4\apc-settings.ini
- C:\programdata\anyplace control 4\gatewaysettings.ini
- <SYSTEM32>\websitename.txt
- C:\programdata\anyplace control 4\anyplace-control.ini
- %TEMP%\$inst\2.tmp
- %TEMP%\$inst\temp_0.tmp
- ClassName: 'Indicator' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''