Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2] 'Flags' = '00000043'
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\safemodeip[1].ini
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\disminiie[1].ini
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\checkok[1].asp
- <SYSTEM32>\mshosts.dll
- 'dh.#8cs.com':80
- 'zz###o.i8cs.com':80
- 'localhost':1035
- 'ip##.yqxqc.com':8088
- zz###o.i8cs.com/zzgjzi/disminiie.ini
- zz###o.i8cs.com/zzgjzi/safemodeip.ini
- dh.#8cs.com/checkok.asp
- DNS ASK zz###o.i8cs.com
- DNS ASK dh.#8cs.com
- DNS ASK ip##.yqxqc.com
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: '' WindowName: 'www.baidu.com'