Техническая информация
- [<HKLM>\SOFTWARE\Classes\PROTOCOLS\Filter\text/html] 'CLSID' = '{7AF3CAFC-B8C9-46cd-A419-B354C74AEBAF}'
- <SYSTEM32>\regsvr32.exe /s "<SYSTEM32>\lscass.dll"
- %TEMP%\cru1.cmd
- <SYSTEM32>\lscass.dll
- %TEMP%\cru1.cmd
- 'do#####d01.dasongs.com':80
- do#####d01.dasongs.com/?in################################################
- DNS ASK do#####d01.dasongs.com