Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'kernel' = 'kernel.exe'
- <SYSTEM32>\kernel.exe
- ClassName: 'RegMonClass' WindowName: ''
- ClassName: 'FileMonClass' WindowName: ''
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\mmjy0114[1].snk
- <SYSTEM32>\mmjy0114.snk
- %TEMP%\7893096C.TMP
- <SYSTEM32>\kernel.exe
- <SYSTEM32>\mmjy0114.snk
- 'ha###oft.zj.com':80
- 'localhost':1036
- ha###oft.zj.com/mmjy0114.snk
- DNS ASK ha###oft.zj.com
- ClassName: 'Shell_TrayWnd' WindowName: ''