Technical Information
- [<HKLM>\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command] '' = '"%PROGRAM_FILES%\Internet Explorer\iexplore.exe" http://www.365j.com/?gg'
- %APPDATA%\Microsoft\Internet Explorer\Quick Launch\Internet Explorer.lnk
- from <DRIVERS>\etc\hosts to %TEMP%\hosts