Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Win Update' = '%APPDATA%\Win Update\Win Update.exe'
- %PROGRAM_FILES%\FireFox\xpcshell.exe
- %PROGRAM_FILES%\FireFox\xpidl.exe
- %PROGRAM_FILES%\FireFox\shlibsign.exe
- %PROGRAM_FILES%\FireFox\updater.exe
- %PROGRAM_FILES%\FireFox\uninstall\helper.exe
- %PROGRAM_FILES%\Messenger\msmsgs.exe
- %PROGRAM_FILES%\FireFox\xpt_dump.exe
- %PROGRAM_FILES%\FireFox\xpt_link.exe
- %PROGRAM_FILES%\FireFox\plugin-container.exe
- %CommonProgramFiles%\Microsoft Shared\DW\DWTRIG20.EXE
- %PROGRAM_FILES%\FireFox\crashreporter.exe
- C:\Far2\Far.exe
- %CommonProgramFiles%\Microsoft Shared\DW\DW20.EXE
- %PROGRAM_FILES%\FireFox\mangle.exe
- %PROGRAM_FILES%\FireFox\nsinstall.exe
- %PROGRAM_FILES%\FireFox\firefox.exe
- %PROGRAM_FILES%\FireFox\js.exe
- '%TEMP%\thomsonkey.exe'
- '%WINDIR%\Microsoft.NET\Framework\v2.0.50727\vbc.exe'
- %WINDIR%\Microsoft.NET\Framework\v2.0.50727\vbc.exe
- %TEMP%\nra1.tmp
- %APPDATA%\Win Update\Win Update.exe
- %TEMP%\thomsonkey.exe
- %TEMP%\nra1.tmp
- 'se######1.chickenkiller.com':670
- DNS ASK se######1.chickenkiller.com
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'Indicator' WindowName: ''