Техническая информация
- %HOMEPATH%\Start Menu\Programs\Startup\MySystemSysInfo.lnk.Lnk
- %HOMEPATH%\Start Menu\Programs\SystemInformation\MySystemSysInfo.exe
- <SYSTEM32>\attrib.exe -s -h %APPDATA%\___Kill_MyPro.bat
- <SYSTEM32>\attrib.exe - s - h - r <Полный путь к вирусу>
- <SYSTEM32>\cmd.exe /c %APPDATA%\___Kill_MyPro.bat
- %APPDATA%\___Kill_MyPro.bat
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\somabye[1]
- %HOMEPATH%\Start Menu\Programs\SystemInformation\log.dat
- %WINDIR%\acc.dll
- %HOMEPATH%\Start Menu\Programs\SystemInformation\MySystemSysInfo.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\somabye[1]
- %APPDATA%\___Kill_MyPro.bat
- %HOMEPATH%\Start Menu\Programs\Startup\MySystemSysInfo.lnk.Lnk
- %HOMEPATH%\Start Menu\Programs\SystemInformation\MySystemSysInfo.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\somabye[1]
- %WINDIR%\acc.dll
- 'localhost':1040
- 're####f.no-ip.org':2122
- 'localhost':1037
- 'www.so##bye.com':80
- www.so##bye.com/
- DNS ASK re####f.no-ip.org
- DNS ASK www.so##bye.com
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'IEFrame' WindowName: ''
- ClassName: '' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''