Техническая информация
- [<HKLM>\Software\Classes\CLSID\{86AEFBE8-763F-0647-899C-A93278894D8E}\Shell\Open\Command] '' = '%ProgramFiles%\Internet Explorer\Iexplore.exe http://www.6071.com/?tt'
- '%ProgramFiles%\internet explorer\iexplore.exe' http://%7#########E%74%31%36%32%2E%63%6F%6D/taobao/
- http://www.t1##.com/taobao/
- http://d1#######stzrp.cloudfront.net/themes/saledefault.css
- http://d1#######stzrp.cloudfront.net/themes/assets/style.css
- http://d1#######stzrp.cloudfront.net/themes/assets/skenzo.css
- http://c.####ingcrew.net/scripts/sale_form.js
- http://iy###arch.com/?dn#######################
- DNS ASK t1##.com
- DNS ASK d1#######stzrp.cloudfront.net
- DNS ASK c.####ingcrew.net
- DNS ASK iy###arch.com
- ClassName: '' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- '<SYSTEM32>\rundll32.exe' "%ProgramFiles%\Microsoft Office\Office12\GrooveUtil.DLL",GetResourceModulePath RMgHDHAgPuTzIaNLVbZi7hyX6A3i2RwQ