Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce] 'NVIDIA Driver' = '%HOMEPATH%\IEMediaEX\Application\IOSample\windlg.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] '<SYSTEM32>\spoolsv.exe' = '<SYSTEM32>\spoolsv.exe:*:Enabled:HPLJET'
- %HOMEPATH%\IEMediaEX\Application\IOSample\usbdrv.exe
- <SYSTEM32>\spoolsv.exe
- <SYSTEM32>\subst.exe
- %HOMEPATH%\IEMediaEX\Application\IOSample\detect.dll
- %HOMEPATH%\IEMediaEX\Application\IOSample\active.dll
- %HOMEPATH%\IEMediaEX\Application\IOSample\usbdrv.exe
- '10######ice.serveblog.net':80
- 10######ice.serveblog.net/blog2/dread.php
- 10######ice.serveblog.net/blog2/dwrite.php
- DNS ASK 10######ice.serveblog.net