Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run] 'IEXPLORE.EXE' = '%PROGRAM_FILES%\Internet Exp1orer\IEXPLORE.EXE'
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run] 'IEXPLORE.EXE' = '%PROGRAM_FILES%\Internet Exp1orer\IEXPLORE.EXE'
- '%PROGRAM_FILES%\Internet Exp1orer\IEXPLORE.EXE'
- %WINDIR%\$NtUninstallKB922582$\fltmkb.dll
- %PROGRAM_FILES%\Internet Exp1orer\IEXPLORE
- <Текущая директория>\~a
- <Текущая директория>\~a
- %PROGRAM_FILES%\Internet Exp1orer\IEXPLORE в %PROGRAM_FILES%\Internet Exp1orer\IEXPLORE.EXE
- '25#.#55.255.255':80
- 'www.ta###enter.com':80
- 'www.ia##oan.com':80
- 25#.#55.255.255/yzmly/hostlist.htm
- www.ta###enter.com/yzmly/app.htm
- www.ia##oan.com/yzmly/bak.htm
- DNS ASK www.ta###enter.com
- DNS ASK www.ia##oan.com
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'