Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Googel inc.' = '%WINDIR%\Temp\Googel inc..exe'
- [<HKLM>\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] 'UserInit' = '<SYSTEM32>\userinit.exe,%HOMEPATH%\My Documents\MSDCSC\MicroUpdate.exe'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'MicroUpdate' = '%HOMEPATH%\My Documents\MSDCSC\MicroUpdate.exe'
- '%HOMEPATH%\My Documents\MSDCSC\MicroUpdate.exe'
- '%WINDIR%\Temp\Googel inc..exe'
- '%TEMP%\wer\SerVeR.exe'
- '%TEMP%\wer\123.exe'
- [<HKCU>\Software\Paltalk]
- %TEMP%\wer\windows_7full.scr
- %TEMP%\wer\workgroup
- %WINDIR%\Temp\Googel inc..exe
- %TEMP%\wer\SerVeR.exe
- %TEMP%\wer\123.exe
- %HOMEPATH%\My Documents\MSDCSC\MicroUpdate.exe
- '92.##5.212.208':1995
- '92.##5.212.208':1604
- ClassName: 'Indicator' WindowName: '(null)'
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: 'EDIT' WindowName: '(null)'