Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Pantun Pa Cilong' = '%WINDIR%\dayeuh.exe'
- [<HKLM>\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] 'Shell' = 'Explorer.exe "%WINDIR%\system.exe"'
- [<HKCU>\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] 'Shell' = 'Explorer.exe "%WINDIR%\system.exe"'
- '<SYSTEM32>\shutdown.exe' -r -t 10 -c "Wait..."
- [<HKCU>\Software\Microsoft\Internet Explorer\Main] 'Window Title' = 'Tunggul Kawung by Aniee '
- <SYSTEM32>\wuapi32.dll
- %WINDIR%\config.ini
- C:\iTtNnTPH.txt
- C:\afjxdaai.txt
- %WINDIR%\Web\GnSalak.exe
- %WINDIR%\dayeuh.txt
- %TEMP%\Bogor.vbs
- %WINDIR%\system.txt
- %WINDIR%\system\DESKJET.DLL
- %WINDIR%\system\PRINTER.DLL
- %WINDIR%\system\WTASK.DLL
- %WINDIR%\system.exe
- %WINDIR%\kujang.jpg
- <SYSTEM32>\himem32.sys
- %WINDIR%\Fonts\Verdana.dll
- %TEMP%\~DFAF73.tmp
- C:\afjxdaai.txt
- C:\iTtNnTPH.txt
- '<IP-адрес в локальной сети>':80
- '<IP-адрес в локальной сети>':139
- 'localhost':445
- ClassName: '' WindowName: 'Aniee'