Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Flash player' = '%APPDATA%\FlashPlayer\Flashplayer.exe'
- %WINDIR%\System23.exe
- %APPDATA%\FlashPlayer\Flashplayer.exe
- %PROGRAM_FILES%\Hend\Pack.exe
- <SYSTEM32>\taskkill.exe /F /IM opera.exe
- <SYSTEM32>\rundll32.exe InetCpl.cpl,ClearMyTracksByProcess 32
- <SYSTEM32>\rundll32.exe InetCpl.cpl,ClearMyTracksByProcess 2
- <SYSTEM32>\taskkill.exe /F /IM firefox.exe
- <SYSTEM32>\taskkill.exe /F /IM chrome.exe
- <SYSTEM32>\taskkill.exe /F /IM IEXPLORE.exe
- opera.exe
- iexplore.exe
- firefox.exe
- [<HKCU>\Software\Yahoo\pager]
- %APPDATA%\FlashPlayer\MSINET.OCX
- <SYSTEM32>\MSINET.OCX
- %APPDATA%\FlashPlayer\Flashplayer.exe
- %WINDIR%\windows.dll
- %WINDIR%\System23.exe
- %PROGRAM_FILES%\Hend\Pack.exe
- %PROGRAM_FILES%\Hend\1.jpg
- %APPDATA%\FlashPlayer\RICHTX32.OCX
- <SYSTEM32>\RICHTX32.OCX
- %TEMP%\~DF5596.tmp
- %WINDIR%\System23.exe
- ClassName: 'Indicator' WindowName: ''
- ClassName: '' WindowName: ''
- ClassName: 'EDIT' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''