Техническая информация
- [<HKLM>\SOFTWARE\Classes\exefile\shell\open\command] '' = '%PROGRAM_FILES%\alggui.exe "%1" %*'
- [<HKLM>\SYSTEM\ControlSet001\Services\AdbUpd] 'Start' = '00000002'
- '%PROGRAM_FILES%\svchost.exe'
- '%PROGRAM_FILES%\XJR Antivirus\XJR Antivirus.exe'
- %PROGRAM_FILES%\wp3.dat
- %PROGRAM_FILES%\svchost.exe
- %PROGRAM_FILES%\alggui.exe
- %PROGRAM_FILES%\adc_w32.dll
- %HOMEPATH%\Start Menu\Programs\XJR Antivirus\XJR Antivirus.lnk
- %PROGRAM_FILES%\XJR Antivirus\XJR Antivirus.exe
- %PROGRAM_FILES%\wp4.dat
- %HOMEPATH%\Desktop\XJR Antivirus.lnk
- 'ti##.#indows.com':123
- 'localhost':1039
- DNS ASK co######.freesourceforyou.com
- DNS ASK ti##.#indows.com
- 'localhost':1041
- 'localhost':1040
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'