Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'MSMSGS' = '"%PROGRAM_FILES%\Messenger\msmsgs.exe" /background'
- [<HKLM>\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] 'Userinit' = '<SYSTEM32>\userinit.exe,<Полный путь к вирусу>,'
- [<HKCU>\Software\Microsoft\MessengerService]
- C:\nml2.sys
- 'us####.jabry.com':80
- us####.jabry.com/fotobook/Cnf.jpg
- DNS ASK us####.jabry.com
- ClassName: '' WindowName: 'MSN Hoje'
- ClassName: '' WindowName: 'Windows Live Today'
- ClassName: 'Indicator' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: '' WindowName: 'Bem-vindo ao Windows Live Messenger'
- ClassName: '' WindowName: 'Today'
- ClassName: '' WindowName: 'MSN Today'
- ClassName: '' WindowName: 'Windows Live Hoje'
- ClassName: '' WindowName: 'Hoje'