Техническая информация
- [<HKLM>\SOFTWARE\Classes\omfile\shell\open\command] '' = '%PROGRAM_FILES%\internet explorer\iexplore.exe'
- [<HKLM>\SOFTWARE\Classes\ocfile\shell\open\command] '' = '%PROGRAM_FILES%\internet explorer\iexplore.exe'
- [<HKLM>\SOFTWARE\Classes\ovfile\shell\open\command] '' = '%PROGRAM_FILES%\internet explorer\iexplore.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Commdlg] 'Start' = '00000002'
- %PROGRAM_FILES%\WindowsPlayer\Media\MediaCenter.exe <Полный путь к вирусу>
- <SYSTEM32>\cmd.exe /c ""<SYSTEM32>\userinit.bat" "
- <SYSTEM32>\attrib.exe -R -H -S <SYSTEM32>\GROUPPOLICY\MACHINE\SCRIPTS /S /D
- %WINDIR%\regedit.exe -s %WINDIR%\r
- <SYSTEM32>\wscript.exe "<SYSTEM32>\userinit.vbs"
- %WINDIR%\KB611565.log
- %WINDIR%\KB611568.log
- %WINDIR%\KB924270.log
- <SYSTEM32>\IEHelper.dll
- %WINDIR%\ЎЎ
- %PROGRAM_FILES%\Internet Explorer\2.ico
- %TEMP%\╠╘▒ж.URL
- %TEMP%\HCMD.reg
- %TEMP%\IEqwert.reg
- %TEMP%\IEINDEX.reg
- %TEMP%\SETIE.reg
- %TEMP%\SETIE.BAT
- %WINDIR%\IEHelper
- %WINDIR%\1
- %WINDIR%\2
- %PROGRAM_FILES%\WindowsPlayer\Media\MediaCenter.exe
- %WINDIR%\Iesy1
- %WINDIR%\init.bat
- <SYSTEM32>\userinit.vbs
- <SYSTEM32>\userinit.bat
- %WINDIR%\ЎЎЎЎ
- %WINDIR%\3
- %WINDIR%\r
- %WINDIR%\system\COMMDLG.DRV
- %WINDIR%\ЎЎЎЎ
- %WINDIR%\ЎЎ
- %WINDIR%\IEHelper
- %WINDIR%\init.bat
- %WINDIR%\Iesy1
- %WINDIR%\3
- %WINDIR%\r
- %WINDIR%\1
- %WINDIR%\2
- ClassName: 'RegEdit_RegEdit' WindowName: ''