Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Internet Explorer\Extensions\{C18CB140-0BBB-11D4-8FE8-0088CC102439}] 'Exec' = 'http://www.k236.com/'
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Start' = '<SYSTEM32>\360S.exe'
- [<HKLM>\SOFTWARE\Microsoft\Internet Explorer\Extensions\{C18CB140-0BBB-11D4-8FE8-0088CC102438}] 'Exec' = 'http://www.cc139.com/?24'
- [<HKLM>\SOFTWARE\Classes\HTTP\shell\open\command] '' = '"%PROGRAM_FILES%\Internet Explorer\IEXPLORE.EXE" "%1"'
- [<HKLM>\SOFTWARE\Microsoft\Internet Explorer\Extensions\{C18CB140-0BBB-11D4-8FE8-0088CC102437}] 'Exec' = 'http://www.0531.com/?24'
- <SYSTEM32>\regini.exe %TEMP%\regini.cfg
- %ALLUSERSPROFILE%\Desktop\酷我音乐盒 2011.lnk
- %TEMP%\regini.cfg