Техническая информация
- %TEMP%\<Имя вируса>.exe
- <SYSTEM32>\cmd.exe /c ""%TEMP%\run32w.bat" "
- %PROGRAM_FILES%\Internet Explorer\Connection Wizard\RCX3.tmp
- %PROGRAM_FILES%\Windows Media Player\RCX2.tmp
- <SYSTEM32>\RCX1.tmp
- %PROGRAM_FILES%\Internet Explorer\Connection Wizard\RCX4.tmp
- %PROGRAM_FILES%\Windows Media Player\oxccghn.dll
- %PROGRAM_FILES%\Internet Explorer\Connection Wizard\jwbonas.dll
- %WINDIR%\Temp\~df6efh.tmp
- %TEMP%\run32w.bat
- %TEMP%\<Имя вируса>.exe
- <SYSTEM32>\inetppd.dll
- %PROGRAM_FILES%\Windows Media Player\custsatd.dll
- %PROGRAM_FILES%\Internet Explorer\Connection Wizard\jwaevmm.dll
- <SYSTEM32>\inetppd.dll
- %PROGRAM_FILES%\Internet Explorer\Connection Wizard\jwaevmm.dll
- %PROGRAM_FILES%\Windows Media Player\custsatd.dll