Техническая информация
- '%TEMP%\is-BLKBU.tmp\<Имя вируса>.tmp' /SL5="$30092,227200,56832,<Полный путь к вирусу>"
- '%WINDIR%\explorer.exe'
- '<SYSTEM32>\regsvr32.exe' /s "%APPDATA%\Carefree\CarefreePlugin.dll"
- %WINDIR%\Explorer.EXE
- %APPDATA%\Carefree\is-84B09.tmp
- %APPDATA%\Carefree\CarefreePlugin.dll
- %APPDATA%\Carefree\unins000.dat
- %APPDATA%\Carefree\is-LUE6V.tmp
- %TEMP%\is-BLKBU.tmp\<Имя вируса>.tmp
- %TEMP%\is-GUDDB.tmp\_isetup\_shfoldr.dll
- %TEMP%\is-GUDDB.tmp\UpgradeFile.dll
- %TEMP%\is-BLKBU.tmp\<Имя вируса>.tmp
- %TEMP%\is-GUDDB.tmp\_isetup\_shfoldr.dll
- %TEMP%\is-GUDDB.tmp\UpgradeFile.dll
- %APPDATA%\Carefree\is-84B09.tmp в %APPDATA%\Carefree\CarefreePlugin.dll
- %APPDATA%\Carefree\is-LUE6V.tmp в %APPDATA%\Carefree\unins000.exe
- 'www.go#####analytics.com':443
- DNS ASK co##.###efree.wifipy.com
- DNS ASK www.go#####analytics.com
- ClassName: 'OleMainThreadWndClass' WindowName: ''
- ClassName: 'SysListView32' WindowName: ''
- ClassName: '' WindowName: ''
- ClassName: 'CSCHiddenWindow' WindowName: ''
- ClassName: 'SystemTray_Main' WindowName: ''
- ClassName: '' WindowName: '????????'
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: '' WindowName: 'Ф¶іМЧАГж'
- ClassName: 'BaseBar' WindowName: 'ChanApp'
- ClassName: 'Proxy Desktop' WindowName: ''