Техническая информация
- [<HKLM>\SOFTWARE\Classes\CLSID\{5A8265AA-2D2E-6CBD-8879-8E3E8605AD36}\Shell\Open\Command] '' = '%PROGRAM_FILES%\Internet Explorer\SIGNUP\iexplore.exe %1 h%t%t%p:%//%w%w%w.%19%11%16%19%15.%c%o%m/#3'
- '<SYSTEM32>\cmd.exe' /c c:\1.bat
- '%WINDIR%\regedit.exe' /s {5A8265AA-2D2E-6CBD-8879-8E3E8605AD36}.reg
- '<SYSTEM32>\ping.exe' 127.0.0.1
- '<SYSTEM32>\cacls.exe' "%APPDATA%\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk" /E /C /G everyone:F
- '<SYSTEM32>\cacls.exe' "%HOMEPATH%\Start Menu\Programs\Internet Explorer.lnk" /E /C /G everyone:F
- %WINDIR%\{5A8265AA-2D2E-6CBD-8879-8E3E8605AD36}.bat
- C:\1.bat
- %PROGRAM_FILES%\Internet Explorer\SIGNUP\iexplore.exe
- %WINDIR%\{5A8265AA-2D2E-6CBD-8879-8E3E8605AD36}.reg
- 'an#y.cd':80
- an#y.cd/link.txt
- DNS ASK an#y.cd
- ClassName: 'RegEdit_RegEdit' WindowName: ''