Техническая информация
- [<HKLM>\SOFTWARE\Classes\vchat\shell\open\command] '' = '"%TEMP%\VClient.exe" %1'
- '%TEMP%\VClient.exe'
- '%TEMP%\server.exe'
- ClassName: 'RegmonClass' WindowName: '(null)'
- ClassName: 'Filemonclass' WindowName: '(null)'
- ClassName: 'PROCMON_WINDOW_CLASS' WindowName: '(null)'
- ClassName: 'OLLYDBG' WindowName: '(null)'
- ClassName: 'GBDYLLO' WindowName: '(null)'
- ClassName: 'pediy06' WindowName: '(null)'
- %TEMP%\VClient.exe
- %ALLUSERSPROFILE%\Application Data\LightC\LC.ini
- %ALLUSERSPROFILE%\Application Data\LightC\LCs.dll
- %TEMP%\aut1.tmp
- %TEMP%\server.exe
- %TEMP%\aut2.tmp
- %TEMP%\aut2.tmp
- %TEMP%\aut1.tmp
- '17#.#92.16.212':1740
- '17#.#92.16.212':443
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: '18467-41' WindowName: '(null)'
- ClassName: '(null)' WindowName: 'Registry Monitor - Sysinternals: www.sysinternals.com'