Техническая информация
- [<HKLM>\SOFTWARE\Classes\exefile\shell\open\command] '' = '%PROGRAM_FILES%\alggui.exe "%1" %*'
- [<HKLM>\SYSTEM\ControlSet001\Services\AdbUpd] 'Start' = '00000002'
- '%PROGRAM_FILES%\svchost.exe'
- '%PROGRAM_FILES%\Sysinternals Antivirus\Sysinternals Antivirus.exe'
- %PROGRAM_FILES%\svchost.exe
- %PROGRAM_FILES%\wp3.dat
- %PROGRAM_FILES%\alggui.exe
- %PROGRAM_FILES%\adc_w32.dll
- %HOMEPATH%\Start Menu\Programs\Sysinternals Antivirus\Sysinternals Antivirus.lnk
- %PROGRAM_FILES%\Sysinternals Antivirus\Sysinternals Antivirus.exe
- %PROGRAM_FILES%\wp4.dat
- %HOMEPATH%\Desktop\Sysinternals Antivirus.lnk
- 'ti##.#indows.com':123
- 'localhost':1038
- DNS ASK co######.#ylivejournalchanel.com
- DNS ASK ti##.#indows.com
- 'localhost':1040
- 'localhost':1039
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'