Техническая информация
- %TEMP%\is-FIP50.tmp\is-Q2L8G.tmp /SL4 $40032 "<Полный путь к вирусу>" 90427 52224
- %PROGRAM_FILES%\Internet Explorer\IEXPLORE.EXE Explorer\iexplore.exe http://12#.##4.9.113:8022/Insertbz.aspx?mc###############################
- %PROGRAM_FILES%\xassist\is-VNFSF.tmp
- %PROGRAM_FILES%\xassist\is-6B33A.tmp
- %PROGRAM_FILES%\xassist\is-0IF1B.tmp
- %PROGRAM_FILES%\xassist\is-MLDBV.tmp
- %PROGRAM_FILES%\xassist\is-2OB9V.tmp
- %PROGRAM_FILES%\xassist\is-VOM1N.tmp
- %PROGRAM_FILES%\xassist\unins000.dat
- C:\csrss.dat
- %PROGRAM_FILES%\xassist\is-0CMUV.tmp
- %PROGRAM_FILES%\xassist\is-BQR71.tmp
- %PROGRAM_FILES%\xassist\is-GHT3Q.tmp
- %PROGRAM_FILES%\xassist\is-55ET5.tmp
- %TEMP%\is-LLEF2.tmp\dis.ss
- %TEMP%\is-LLEF2.tmp\tup.pp
- %TEMP%\is-LLEF2.tmp\_isetup\_shfoldr.dll
- %TEMP%\is-FIP50.tmp\is-Q2L8G.tmp
- %TEMP%\is-LLEF2.tmp\_isetup\_RegDLL.tmp
- %PROGRAM_FILES%\xassist\is-QJPR8.tmp
- %PROGRAM_FILES%\xassist\is-CAI06.tmp
- %PROGRAM_FILES%\xassist\is-VK6S5.tmp
- %PROGRAM_FILES%\xassist\is-D0G1R.tmp
- %PROGRAM_FILES%\xassist\is-ETT0E.tmp
- %PROGRAM_FILES%\xassist\is-KS83K.tmp
- %TEMP%\is-LLEF2.tmp\_isetup\_shfoldr.dll
- %TEMP%\is-FIP50.tmp\is-Q2L8G.tmp
- %TEMP%\is-LLEF2.tmp\_isetup\_RegDLL.tmp
- %TEMP%\is-LLEF2.tmp\dis.ss
- %TEMP%\is-LLEF2.tmp\tup.pp
- '12#.#24.9.113':8022
- 'localhost':1034
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: '' WindowName: ''