Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] 'LoadAppInit_DLLs' = '00000001'
- [<HKLM>\System\CurrentControlSet\Services\c5759c0b] 'Start' = '00000002'
- [<HKLM>\System\CurrentControlSet\Services\c5759c0b] 'ImagePath' = '"<SYSTEM32>\rundll32.exe" "%ProgramFiles%\AppendRunner\AppendRunner.dll",serv'
- %TEMP%\tf15361ae2.dll
- %ProgramFiles%\appendrunner\appendrunner.dll
- DNS ASK ed###on.cnn.com
- DNS ASK ti##.nist.gov
- '<SYSTEM32>\rundll32.exe' "%ProgramFiles%\AppendRunner\AppendRunner.dll",serv -install
- '<SYSTEM32>\rundll32.exe' "%ProgramFiles%\AppendRunner\AppendRunner.dll",serv