Техническая информация
- [<HKLM>\SOFTWARE\Classes\CLSID\{09B77220-D441-471f-9896-DE86FF77E65E}\Shell\Open\Command] '' = '"%PROGRAM_FILES%\Internet Explorer\iexplore.exe" ""'
- [<HKLM>\SOFTWARE\Classes\CLSID\{8E8CBB75-9532-4cc9-B5E3-6D282E92151A}\Shell\Open\Command] '' = '"%PROGRAM_FILES%\Internet Explorer\iexplore.exe" ""'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'MLink' = '%APPDATA%\MLink.exe'
- [<HKLM>\SOFTWARE\Classes\CLSID\{9355B0DA-2A80-40cb-8E0E-C4A152467E18}\Shell\Open\Command] '' = '"%PROGRAM_FILES%\Internet Explorer\iexplore.exe" ""'
- %APPDATA%\MLink.exe /install
- %APPDATA%\readme.txt
- %APPDATA%\uninst.exe
- %HOMEPATH%\Favorites\G마켓.url
- %HOMEPATH%\Favorites\11번가.url
- %HOMEPATH%\Favorites\옥션.url
- %APPDATA%\gmarket.ico
- %TEMP%\nsk2.tmp\System.dll
- %APPDATA%\auction.ico
- %APPDATA%\MLink.exe
- %APPDATA%\11.ico
- %TEMP%\nsk2.tmp\System.dll
- 'ey###arch.co.kr':80
- ey###arch.co.kr/admin/list.php
- ey###arch.co.kr/admin/version.html
- ey###arch.co.kr/count/inst.php?pc##############################
- DNS ASK ey###arch.co.kr
- ClassName: 'Indicator' WindowName: ''