Техническая информация
- [<HKLM>\SOFTWARE\Classes\CLSID\{28343837-4229-3099-9153-068063565684}\Shell\Open\Command] '' = '%ProgramFiles%\Soft\explorer\2345Desktop\2345Desktop.exe command=site direct=true'
- '<SYSTEM32>\cacls.exe' "%ProgramFiles%\Soft\explorer" /e /c /d everyone
- '<SYSTEM32>\cmd.exe' /c reg add HKCR\*\shell\heng_div /ve /d ґтїЄдЇААЖч /f reg add HKCR\*\shell\heng_div\command /ve /d Iexplore http://www.23##a.com/ /f
- '<SYSTEM32>\cacls.exe' "%APPDATA%\Microsoft\Internet Explorer\Quick Launch" /e /c /d everyone
- '<SYSTEM32>\cmd.exe' /c echo y|cacls "%APPDATA%\Microsoft\Internet Explorer\Quick Launch" /e /c /g everyone:r
- '<SYSTEM32>\cmd.exe' /c echo y|cacls "%ProgramFiles%\Soft\explorer" /e /c /d everyone
- '<SYSTEM32>\cmd.exe' /c echo y|cacls "%APPDATA%\Microsoft\Internet Explorer\Quick Launch" /e /c /d everyone
- '<SYSTEM32>\cmd.exe' /S /D /c" echo y"
- %ProgramFiles%\Internet Explorer\l11l1111l1l.exe
- %ProgramFiles%\Soft\explorer\2345Desktop\2345НшЦ·µјєЅ.lnk
- %ProgramFiles%\Internet Explorer\2.exe
- %HOMEPATH%\My Documents\4lspo.html
- %HOMEPATH%\Desktop\НшЦ·µјєЅ6.lnk
- %ProgramFiles%\Soft\explorer\2345Desktop\2345Desktop.exe
- C:\ЕдЦГПо.ini
- C:\sys1.0.sys
- %ProgramFiles%\Internet Explorer\ieproxy.ini
- %APPDATA%\2345Soft\2345Movie\2345Movie.ini
- %APPDATA%\2345Soft\2345Desktop\2345Desktop.ini
- %HOMEPATH%\My Documents\4lspo.html
- %APPDATA%\2345Soft\2345Movie\2345Movie.ini
- %APPDATA%\2345Soft\2345Desktop\2345Desktop.ini