Техническая информация
- [<HKCU>\Control Panel\Desktop] 'SCRNSAVE.EXE' = '<SYSTEM32>\ÏÂÑ©.scr'
- [<HKLM>\SOFTWARE\Microsoft\Internet Explorer\Extensions\{6096E38F-5AC1-4391-8EC4-75DFA92FB32F}] 'Exec' = 'http://www.neihuang.net'
- Компонент восстановления системы (SR)
- Центр обеспечения безопасности (Security Center)
- '%WINDIR%\regedit.exe' /s sunjee.reg
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] 'NoSMHelp' = '00000001'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3] '1601' = '00000000'
- <SYSTEM32>\OEMLOGO.BMP
- <SYSTEM32>\oem.ico
- <SYSTEM32>\OEMINFO.INI
- <SYSTEM32>\sunjee.reg
- ClassName: 'RegEdit_RegEdit' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'EDIT' WindowName: ''