Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] '<Имя вируса>' = '%PROGRAM_FILES%\Piucz\Dqaxs.exe /<Имя вируса>'
- '%TEMP%\Witkq290\yezii_setup.exe'
- %TEMP%\GLG4.tmp
- %TEMP%\GLK2.tmp
- <SYSTEM32>\~GLH0001.TMP
- %TEMP%\~GLH0000.TMP
- %TEMP%\GLC1.tmp
- %PROGRAM_FILES%\Piucz\Zemqe.exe
- %CommonProgramFiles%\System\Ole DB\MSPat.xml
- %TEMP%\Witkq290\yezii_setup.exe
- %PROGRAM_FILES%\Piucz\Dqaxs.exe
- <SYSTEM32>\~GLH0001.TMP в <SYSTEM32>\plpl.dll
- %TEMP%\~GLH0000.TMP в %TEMP%\GLF5.tmp
- 'www.so##ll.net':80
- www.so##ll.net/pd/gpl2.asp?af#############
- DNS ASK www.so##ll.net
- ClassName: 'Shell_TrayWnd' WindowName: ''