Техническая информация
- '%WINDIR%\regedit.exe' /s %WINDIR%\LoveReg
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\2VAZY7AN\color[1].js
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\color[1].js
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\YPORKZYZ\color[1].js
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\color[2].js
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\profillesatuais.com.brcolor[1]
- %WINDIR%\Love.Reg
- %PROGRAM_FILES%\real\realplayer\acpi.vxd
- %WINDIR%\system\<Имя вируса>.exe
- %PROGRAM_FILES%\real\realplayer\rmoc32.dll
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\color[1].js
- %PROGRAM_FILES%\real\realplayer\acpi.vxd
- %WINDIR%\Love.Reg
- 'un####edfiles.com':80
- 'pr#######atuais.com.brcolor.js':80
- 'pe####sorkut.com.br':80
- 'bl####ioconta.com':80
- 'al#######esempredniments.com':80
- 'un######iparticipacoes.com':80
- un####edfiles.com/color.js
- pr#######atuais.com.brcolor.js/
- pe####sorkut.com.br/color.js
- bl####ioconta.com/color.js
- al#######esempredniments.com/color.js
- un######iparticipacoes.com/color.js
- DNS ASK un####edfiles.com
- DNS ASK pr#######atuais.com.brcolor.js
- DNS ASK pe####sorkut.com.br
- DNS ASK bl####ioconta.com
- DNS ASK al#######esempredniments.com
- DNS ASK un######iparticipacoes.com
- ClassName: 'RegEdit_RegEdit' WindowName: '(null)'
- ClassName: 'Beth' WindowName: '(null)'