Техническая информация
- [<HKLM>\SOFTWARE\Classes\IE\shell\open\command] '' = '%PROGRAM_FILES%\Internet Explorer\IEXPLORE.EXE http://123.765321.info:83/'
- [<HKLM>\SOFTWARE\Classes\JE\shell\open\command] '' = '%PROGRAM_FILES%\Internet Explorer\IEXPLORE.EXE http://www.laitao.me'
- [<HKLM>\SOFTWARE\Classes\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\shell\open\command] '' = 'Explorer.exe'
- скрытых файлов
- расширений файлов
- %ALLUSERSPROFILE%\Application Data\smsc.exe
- %ALLUSERSPROFILE%\Documents\My Videos\PulgFile.log
- %ALLUSERSPROFILE%\Application Data\smsc.exe
- '1.###18.info':83
- '2.###18.info':83
- 'localhost':1037
- DNS ASK 1.###18.info
- DNS ASK 2.###18.info
- ClassName: 'SHELLDLL_DefView' WindowName: ''
- ClassName: 'Progman' WindowName: ''