Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] '{C51C4AFB-2A5F-6C8E-BB41-C10F02430461}' = ''
- '%TEMP%\csol2011.exe'
- '%TEMP%\CSOL无敌外挂辅助器.exe'
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- %TEMP%\cqntcsol2011.dll
- %TEMP%\csol2011.exe
- %TEMP%\CSOL无敌外挂辅助器.exe
- %TEMP%\cqntcsol2011.dll
- %TEMP%\csol2011.exe
- ClassName: 'Button' WindowName: '????'
- ClassName: 'Button' WindowName: 'И·¶Ё'
- ClassName: '' WindowName: 'ФЭІ»ґ¦Ан'
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: '' WindowName: '????????'