Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\Messenger] 'Start' = '00000002'
- [<HKLM>\SYSTEM\ControlSet001\Services\HidServ] 'Start' = '00000002'
- [<HKLM>\SYSTEM\ControlSet001\Services\AudioSrv] 'Start' = '00000002'
- '%TEMP%\360safe\`GameLogin.exe' <Полный путь к вирусу> -s<Полный путь к вирусу>
- '%PROGRAM_FILES%\360\360sd\360nzp.exe' <Полный путь к вирусу> -s<Полный путь к вирусу>
- '<SYSTEM32>\cmd.exe' /c ""%TEMP%\temp.bat" "
- %PROGRAM_FILES%\360\360sd\ttliniiqg
- %PROGRAM_FILES%\360\360sd\npbdqfjqcu
- %PROGRAM_FILES%\360\360sd\ttliniiqgd
- %PROGRAM_FILES%\360\360sd\qijgrbxicx
- %PROGRAM_FILES%\360\360sd\qijgrbxic
- %PROGRAM_FILES%\360\360sd\360nzp.exe
- %TEMP%\360safe\`GameLogin.exe
- %TEMP%\temp.bat
- %TEMP%\dvvkyiqwhs.dat
- %PROGRAM_FILES%\360\360sd\npbdqfjqc
- %PROGRAM_FILES%\360\360sd\ttliniiqgd
- %PROGRAM_FILES%\360\360sd\qijgrbxic
- %PROGRAM_FILES%\360\360sd\qijgrbxicx
- %PROGRAM_FILES%\360\360sd\npbdqfjqc
- %PROGRAM_FILES%\360\360sd\npbdqfjqcu
- %PROGRAM_FILES%\360\360sd\ttliniiqg
- %TEMP%\dvvkyiqwhs.dat в %PROGRAM_FILES%\Tencent\%SESSIONNAME%\pkqyu.xm
- %PROGRAM_FILES%\360\360sd\360nzp.exe в %PROGRAM_FILES%\360\360sd\360
- ClassName: 'Shell_TrayWnd' WindowName: ''