Техническая информация
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\xhf100[1].bmp
- %ALLUSERSPROFILE%\Start Menu\Programs\XXX\calcx.lnk
- %CommonProgramFiles%\LiveUpdete360.exe
- %CommonProgramFiles%\LiveUpdete360.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\xhf100[1].bmp
- из <Полный путь к вирусу> в %PROGRAM_FILES%\yy.exe
- 'ro######n.gcj.delldns.com':80
- ro######n.gcj.delldns.com/xhf100.bmp
- DNS ASK ro######n.gcj.delldns.com
- ClassName: 'DUIViewWndClassName' WindowName: ''
- ClassName: 'SysListView32' WindowName: 'FolderView'
- ClassName: '' WindowName: ''
- ClassName: 'SHELLDLL_DefView' WindowName: ''
- ClassName: 'CabinetWClass' WindowName: 'XXX'
- ClassName: 'ShellTabWindowClass' WindowName: 'XXX'
- ClassName: 'CabinetWClass' WindowName: ''