Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'GoogleApps' = '%HOMEPATH%\Local Settings\TempS_.exe'
- '%HOMEPATH%\Local Settings\TempS_.exe'
- '%TEMP%\is-5G0PM.tmp\is-AQO6T.tmp' /SL4 $40036 "%HOMEPATH%\Local Settings\Tempwindowsdoctor279.exe" 7361288 52224
- '%HOMEPATH%\Local Settings\Tempwindowsdoctor279.exe'
- ClassName: 'Filemonclass' WindowName: ''
- ClassName: 'Regmonclass' WindowName: ''
- %TEMP%\is-6VVQB.tmp\_isetup\_shfoldr.dll
- %HOMEPATH%\Local Settings\TempS_.exe
- %TEMP%\is-6VVQB.tmp\_isetup\_RegDLL.tmp
- %HOMEPATH%\Local Settings\Tempwindowsdoctor279.exe
- %TEMP%\is-5G0PM.tmp\is-AQO6T.tmp
- 'xo####e.no-ip.info':1122
- DNS ASK xo####e.no-ip.info
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'Indicator' WindowName: ''
- ClassName: '4823-00000029' WindowName: ''
- ClassName: '18467-41' WindowName: ''