Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows NT\CurrentVersion\IniFileMapping\win.ini] 'Winlogon' = 'SYS:Microsoft\Windows NT\CurrentVersion\Internet'
- скрытых файлов
- %CommonProgramFiles%\System\svchost.exe
- %WINDIR%\regedit.exe /S <SYSTEM32>\msscp.reg
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] 'NoInternetIcon' = '00000000'
- %HOMEPATH%\Start Menu\Programs\МФ±¦ИИВфТ»ХЫЖр.lnk
- %HOMEPATH%\Start Menu\Internet Explorer.lnk
- %CommonProgramFiles%\System\svchost.exe
- %HOMEPATH%\Favorites\МФ±¦ИИВфТ»ХЫЖр.url
- %APPDATA%\Microsoft\Internet Explorer\Quick Launch\Internet Explorer.lnk
- %CommonProgramFiles%\System\taobao.ico
- <SYSTEM32>\msscp.reg
- %WINDIR%\Web\Index.htm
- %WINDIR%\Web\Index.html
- %HOMEPATH%\Start Menu\МФ±¦ИИВфТ»ХЫЖр.lnk
- <SYSTEM32>\msscp.reg
- <DRIVERS>\etc\hosts
- ClassName: 'RegEdit_RegEdit' WindowName: ''