Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'IgfxTray' = '%PROGRAM_FILES%\Internet Explorer\IEXPL0RE.EXE'
- [<HKLM>\SYSTEM\ControlSet001\Services\WebTime] 'Start' = '00000002'
- %PROGRAM_FILES%\Internet Explorer\IEXPL0RE.EXE
- %TEMP%\AGAiN\Bass.dll
- %PROGRAM_FILES%\Internet Explorer\IEXPL0RE.EXE
- %HOMEPATH%\Desktop\Internet Explorer.exe
- C:\rambm.dbs
- %TEMP%\<Имя вируса>.exe
- C:\rambs.dbs
- %PROGRAM_FILES%\Internet Explorer\WebTime.exe
- %PROGRAM_FILES%\Internet Explorer\IEXPL0RE.EXE
- %PROGRAM_FILES%\Internet Explorer\WebTime.exe
- %TEMP%\<Имя вируса>.exe
- C:\rambs.dbs
- C:\rambm.dbs
- '21#.#32.224.126':5150
- '22#.#33.59.68':80
- ClassName: 'easyclickplus9' WindowName: 'Microsoft Internet Explorer'
- ClassName: 'Shell_TrayWnd' WindowName: ''