Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'iximaria' = '<Полный путь к вирусу>'
- %WINDIR%\iximaria.exe
- 'su####camptac.com':80
- su####camptac.com/slideshows/biriba/teste.php
- DNS ASK su####camptac.com
- ClassName: '*McAfee*' WindowName: ''
- ClassName: '*hijack*' WindowName: ''
- ClassName: '*Norman*' WindowName: ''
- ClassName: '*Panda*' WindowName: ''
- ClassName: '*norton*' WindowName: ''
- ClassName: '*gbplugin*' WindowName: ''
- ClassName: '*free*' WindowName: ''
- ClassName: '*AVG*' WindowName: ''
- ClassName: '*gbpsv*' WindowName: ''
- ClassName: '*Kaspersky*' WindowName: ''
- ClassName: '*AvastUI*' WindowName: ''
- ClassName: '*Avast*' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'Indicator' WindowName: ''
- ClassName: '*AntiVir*' WindowName: ''
- ClassName: '*Symantec*' WindowName: ''
- ClassName: '*TrendMicro*' WindowName: ''
- ClassName: '*BitDefender*' WindowName: ''
- ClassName: '*NOD32*' WindowName: ''