Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] 'MSHTMLExternal' = 'd89cf830-ded4-4ae5-8d7c-5a4ad7a4151c'
- '%TEMP%\windows-product-key-finder-professional-2.2.0.659.exe'
- '<SYSTEM32>\regsvr32.exe' /s "%TEMP%\windll.dll"
- %TEMP%\windows-product-key-finder-professional-2.2.0.659.log
- %TEMP%\windll.dll
- %CommonProgramFiles%\MS\MSHTMLExternal.dll
- %TEMP%\windows-product-key-finder-professional-2.2.0.659.exe
- %TEMP%\nso2.tmp\NSISdl.dll
- %TEMP%\nso2.tmp\NSISdl.dll
- %TEMP%\windll.dll
- 'ne#####iontracker.com':80
- ne#####iontracker.com/system32/version.php?ve###########################################################
- DNS ASK ne#####iontracker.com
- ClassName: 'IEFrame' WindowName: '(null)'
- ClassName: 'MozillaUIWindowClass' WindowName: '(null)'
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'