Техническая информация
- [<HKLM>\SOFTWARE\Classes\CLSID\{e17d4fc0-5564-11d1-83f2-00a0c90dc849}\shell\Open\Command] '' = 'explorer.exe h%t%t%p%:%/%/%1t%1a%1o%1b%1a%1o.%14%29%25%25%28%.%3c%3n'
- [<HKLM>\SYSTEM\ControlSet001\Services\NetClient] 'Start' = '00000002'
- '<SYSTEM32>\sc.exe' description NetClient "??????????????????????,??????????????"
- '<SYSTEM32>\cmd.exe' /c <Текущая директория>\c.bat
- '<SYSTEM32>\cmd.exe' /C "<Текущая директория>\c.bat"
- '<SYSTEM32>\sc.exe' create NetClient binPath= "%CommonProgramFiles%\NetClient.exe" start= auto DisplayName= "Network Client"
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\view[1].asp
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\search[1]
- <Текущая директория>\c.bat
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\view[1].asp
- 'www.px##25.com':80
- 'www.go###e.com.hk':80
- 'localhost':1037
- www.px##25.com/forum/view.asp?vi#########
- www.go###e.com.hk/search?q=####################################################
- DNS ASK www.px##25.com
- DNS ASK www.go###e.com.hk
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: 'MS_WebcheckMonitor' WindowName: '(null)'
- ClassName: 'MS_AutodialMonitor' WindowName: '(null)'