Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Logitech Desktop Messenger' = '%TEMP%\ins1.tmp\<Имя вируса>.exe /NoIntervention'
- %TEMP%\ins1.tmp\LiteInstRC_EN.dll
- %TEMP%\ins1.tmp\BWHelper.dll
- %TEMP%\ins1.tmp\<Имя вируса>.exe
- %TEMP%\ins1.tmp\params.ini
- %WINDIR%\warhead.ini
- %TEMP%\BWInstall.log
- %TEMP%\ins1.tmp\pacsupport.js
- %TEMP%\ins1.tmp\bw.inf
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'Indicator' WindowName: ''