Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'GoogleUPdate' = '%WINDIR%/GoogleUPdate.exe'
- <Имя диска съемного носителя>:\FotoAniversario.OCX
- <Имя диска съемного носителя>:\MinhaFoto.exe
- <SYSTEM32>\cmd.exe /c "\Documents and Settings\%USERNAME%\win32cmd.bat"
- <SYSTEM32>\regsvr32.exe /s \windows\system32\MSWINSCK.OCX
- <SYSTEM32>\cmd.exe /c %WINDIR%\register.bat
- <SYSTEM32>\cmd.exe /c %WINDIR%\config.bat
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\0D6B6PI5\ocx[1].html
- <SYSTEM32>\MSWINSCK.OCX
- %WINDIR%\GoogleUPdate.dll
- <SYSTEM32>\autoupdate.exe
- %WINDIR%\register.bat
- C:\MinhaFoto.exe
- C:\FotoAniversario.OCX
- %WINDIR%\config.bat
- %HOMEPATH%\win32cmd.bat
- %HOMEPATH%\GTA(HACK).exe
- %HOMEPATH%\GTA 4 Cracker.exe
- <SYSTEM32>\Jpeg.exe
- %HOMEPATH%\hacker.exe
- %PROGRAM_FILES%\hacker.exe
- %WINDIR%\autorun.inf
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\om[1].html
- %PROGRAM_FILES%\GTA(HACK).exe
- %PROGRAM_FILES%\GTA 4 Cracker.exe
- <Имя диска съемного носителя>:\FotoAniversario.jpg
- C:\FotoAniversario.jpg
- <SYSTEM32>\Jpeg.exe
- %WINDIR%\register.bat
- %WINDIR%\config.bat
- %HOMEPATH%\win32cmd.bat
- 'ne####.110mb.com':80
- 'localhost':1034
- ne####.110mb.com/ocx.html
- ne####.110mb.com/om.html
- DNS ASK ne####.110mb.com
- '10.#.1.1':1035
- ClassName: 'Shell_TrayWnd' WindowName: ''