Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Internet Explorer\Extensions\{12F5C784-5373-48C9-8416-7FE0794C83FE}] 'Exec' = 'tencent://message/?uin=635511450'
- [<HKLM>\SOFTWARE\Microsoft\Internet Explorer\Extensions\{6096E38F-5AC1-4391-8EC4-75DFA92FB32F}] 'Exec' = '%windir%\Web\index.htm'
- '%WINDIR%\regedit.exe' /s "<SYSTEM32>\oemlink.reg"
- '<SYSTEM32>\wscript.exe' "%WINDIR%\SUJY.vbs"
- <SYSTEM32>\OemInfo.ini
- <SYSTEM32>\oemlink.reg
- <SYSTEM32>\创为科技支持信息.url
- %WINDIR%\SUJY.vbs
- <SYSTEM32>\OEMLINKICON.ICO
- <SYSTEM32>\oemlogo.bmp
- %WINDIR%\SUJY.cmd
- %WINDIR%\SUJY.cmd
- <SYSTEM32>\oemlink.reg
- %WINDIR%\SUJY.vbs
- ClassName: 'RegEdit_RegEdit' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'EDIT' WindowName: ''