Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'runr' = ''
- %TEMP%\vshost.exe
- %TEMP%\kgr.exe
- %TEMP%\runr.exe
- %TEMP%\systemlogs\logs.txt
- %TEMP%\systeminfo\12-05-2012 04-27-35 PM.Jpeg
- %TEMP%\systeminfo\12-05-2012 04-27-40 PM.Jpeg
- %TEMP%\systeminfo\12-05-2012 04-27-50 PM.Jpeg
- %TEMP%\systeminfo\12-05-2012 04-27-45 PM.Jpeg
- %TEMP%\name.txt
- %TEMP%\kgr.exe
- %TEMP%\vshost.exe
- %TEMP%\runr.exe
- %TEMP%\systematic.txt
- %TEMP%\crd.txt
- %TEMP%\runr.exe
- %TEMP%\kgr.exe
- %TEMP%\vshost.exe
- %TEMP%\name.txt
- %TEMP%\systematic.txt
- %TEMP%\crd.txt
- 'www.lu##.org':80
- 'wp#d':80
- www.lu##.org/systematic.txt
- www.lu##.org/name.txt
- wp#d/wpad.dat
- www.lu##.org/crd.txt
- DNS ASK www.lu##.org
- DNS ASK wp#d
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'Indicator' WindowName: ''