Техническая информация
- %TEMP%\~import.reg
- %TEMP%\0\第一次清理优化.bat
- %TEMP%\aut1.tmp
- %TEMP%\~import.reg
- %TEMP%\aut1.tmp
- '23##.com':443
- 'localhost':1036
- DNS ASK www.23##.com
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'RegEdit_RegEdit' WindowName: ''
- ClassName: '' WindowName: ''
- '<SYSTEM32>\reg.exe' add HKEY_CLASSES_ROOT\CLSID\{00000000-0000-0000-0000-000000000002}\InProcServer32
- '<SYSTEM32>\reg.exe' add HKEY_CLASSES_ROOT\CLSID\{00000000-0000-0000-0000-000000000002}\InProcServer32 /ve /t reg_expand_sz /d <SYSTEM32>\shdocvw.dll /f
- '<SYSTEM32>\reg.exe' add HKEY_CLASSES_ROOT\CLSID\{00000000-0000-0000-0000-000000000002}\Instance
- '<SYSTEM32>\reg.exe' add HKEY_CLASSES_ROOT\CLSID\{00000000-0000-0000-0000-000000000002}
- '<SYSTEM32>\cmd.exe' /c %TEMP%\0\第一次清理优化.bat
- '%WINDIR%\regedit.exe' /S "%TEMP%\~import.reg"
- '%ProgramFiles%\Internet Explorer\IEXPLORE.EXE' https://www.23##.com/?15##