Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\run] 'update' = '%WINDIR%\addins\lrass.exe'
- %WINDIR%\addins\lrase.exe
- <SYSTEM32>\Cachet.exe
- %WINDIR%\addins\lrase.exe
- <SYSTEM32>\Cachet.exe
- %WINDIR%\addins\syslong.dll
- %WINDIR%\addins\MSWINSCK.ocx
- %TEMP%\~DFB262.tmp
- ClassName: '' WindowName: '??????? ---????$????$????$???? - powered by phpwind.net - Tencent Traveler'
- ClassName: '' WindowName: '?? - Tencent Traveler'
- ClassName: '' WindowName: '?????? - ?? [Maxthon]'
- ClassName: '' WindowName: '???????? ?? ?? ?? opera - ??,????! - Tencent Traveler'
- ClassName: '' WindowName: '???? - Tencent Traveler'
- ClassName: '' WindowName: '?? - ?? - Tencent Traveler?'
- ClassName: '' WindowName: '?????? - Tencent Traveler?'
- ClassName: '' WindowName: '??? - ????! - Tencent Traveler'
- ClassName: '' WindowName: '??:???? - Tencent Traveler'
- ClassName: '' WindowName: '???????? ?? ?? ?? opera - ??,????! - ?? [Maxthon]'
- ClassName: '' WindowName: '??????? ---????$????$????$???? - powered by phpwind.net - ?? [Maxthon]'
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'MozillaUIWindowClass' WindowName: ''
- ClassName: '' WindowName: '?? - ?? [Maxthon]'
- ClassName: '' WindowName: '??:???? - ?? [Maxthon]'
- ClassName: '' WindowName: '?? - ?? - ?? [Maxthon]'
- ClassName: '' WindowName: '???? - ?? [Maxthon]'
- ClassName: '' WindowName: '??? - ????! - ?? [Maxthon]'