Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'DirectKeyword' = '%APPDATA%\DirectKeyword\DirectKeyword.exe'
- %PROGRAM_FILES%\msclinicf\dksetup_k10000.exe
- %APPDATA%\DirectKeyword\DirectKeyword.exe -install k10000
- <SYSTEM32>\sclinicin.exe
- %PROGRAM_FILES%\msclinicf\msclinicdel.exe inst
- %PROGRAM_FILES%\msclinicf\msclinicdel.exe
- %PROGRAM_FILES%\msclinicf\msclinicf.dll
- %PROGRAM_FILES%\msclinicf\dksetup_k10000.exe
- %APPDATA%\DirectKeyword\DirectKeyword.exe
- <SYSTEM32>\VB6KO.DLL
- %TEMP%\$inst\2.tmp
- <SYSTEM32>\sclinicin.exe
- %TEMP%\$inst\temp_0.tmp
- <SYSTEM32>\MSINET.OCX
- <SYSTEM32>\INETKO.DLL
- %TEMP%\$inst\2.tmp
- %TEMP%\$inst\temp_0.tmp
- '22#.#5.232.44':80
- 'localhost':1037
- 22#.#5.232.44/~serviceitem/execute.php?m_###############################################
- ClassName: 'Indicator' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''