Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'WinDir' = '%WINDIR%\Media\wininnet.cpl'
- '<SYSTEM32>\rundll32.exe' shell32.dll,Control_RunDLL "%WINDIR%\Media\wininnet.cpl",
- '<SYSTEM32>\reg.exe' add "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" /v WinDir /d "%WINDIR%\Media\wininnet.cpl" /f
- %WINDIR%\Media\wininnet.cpl
- %WINDIR%\Media\java.exe
- 'aa##.bb.com.br':443
- 'localhost':1038
- 'ma#######h237237.servehttp.com':80
- ma#######h237237.servehttp.com/ok.txt
- DNS ASK aa##.bb.com.br
- DNS ASK ma#######h237237.servehttp.com
- ClassName: 'MS_AutodialMonitor' WindowName: '(null)'
- ClassName: 'MS_WebcheckMonitor' WindowName: '(null)'
- ClassName: 'MS_WINHELP' WindowName: '(null)'
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: 'TabWindowClass' WindowName: '(null)'