Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Blizzard' = '%WINDIR%\Blizzard Entertainment.exe'
- [<HKLM>\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] 'UserInit' = '<SYSTEM32>\userinit.exe,%WINDIR%\Blizzard Entertainment.exe'
- %WINDIR%\Blizzard Entertainment.exe
- C:\swap Macro 0.3 setting.exe
- C:\ЅєїТёЕЕ©·О 0.3.exe
- %WINDIR%\Explorer.EXE
- ClassName: 'Filemonclass' WindowName: ''
- ClassName: 'Regmonclass' WindowName: ''
- %WINDIR%\Blizzard Entertainment.exe
- %WINDIR%\µрѕЖєн·О III - 1991_88E6680F\ServerLogs\%USERNAME%\24-09-2012
- C:\ЅєїТёЕЕ©·О 0.3.exe
- C:\swap Macro 0.3 setting.exe
- 'be####ker.codns.com':1991
- DNS ASK be####ker.codns.com
- ClassName: '4823-00000029' WindowName: ''
- ClassName: '18467-41' WindowName: ''
- ClassName: 'AutoHotkey' WindowName: 'C:\?????????? 0.3.exe'
- ClassName: 'Shell_TrayWnd' WindowName: ''