Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'YYNote' = '<Полный путь к файлу>'
- %HOMEPATH%\My Documents\YYNote\DB.ldb
- %HOMEPATH%\My Documents\YYNote\Log\20171206.txt
- %HOMEPATH%\My Documents\YYNote\Set.ini
- %HOMEPATH%\My Documents\YYNote\DB.mdb
- <SYSTEM32>\d3d9caps.dat
- %HOMEPATH%\My Documents\YYNote\DB.ldb
- <SYSTEM32>\d3d9caps.dat
- %HOMEPATH%\My Documents\YYNote\DB.ldb
- 'co##af.com':80
- 'wp#d':80
- http://co##af.com/tool/ip
- http://11#.#11.111.1/wpad.dat via wp#d
- DNS ASK co##af.com
- DNS ASK wp#d
- ClassName: 'SysListView32' WindowName: ''
- ClassName: 'SHELLDLL_DefView' WindowName: ''
- ClassName: 'Progman' WindowName: 'Program Manager'