Техническая информация
- [<HKCU>\Software\Microsoft\Windows NT\CurrentVersion\Windows] 'load' = '"%TEMP%\ntdll.exe"'
- %TEMP%\ntdll.exe
- '14#.#9.35.19':80
- 14#.#9.35.19/4321.html
- 14#.#9.35.19/4334.html
- 14#.#9.35.19/4301.html
- 14#.#9.35.19/4311.html
- 14#.#9.35.19/4344.html
- 14#.#9.35.19/4366.html
- 14#.#9.35.19/4373.html
- 14#.#9.35.19/4350.html
- 14#.#9.35.19/4360.html
- 14#.#9.35.19/4233.html
- 14#.#9.35.19/4242.html
- 14#.#9.35.19/4200.html
- 14#.#9.35.19/4213.html
- 14#.#9.35.19/4249.html
- 14#.#9.35.19/4281.html
- 14#.#9.35.19/4295.html
- 14#.#9.35.19/4259.html
- 14#.#9.35.19/4268.html
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'EDIT' WindowName: ''