Техническая информация
- %ALLUSERSPROFILE%\Start Menu\Programs\Startup\·Ѕ±гїмЛЩ°Щ¶ИЛСЛч.lnk
- '%PROGRAM_FILES%\·Ѕ±гїмЛЩ°Щ¶ИЛСЛч\FangBian.exe'
- '%TEMP%\is-E2J22.tmp\<Имя вируса>.tmp' /SL5="$30092,257270,51712,<Полный путь к вирусу>"
- %ALLUSERSPROFILE%\Start Menu\Programs\·Ѕ±гїмЛЩ°Щ¶ИЛСЛч\·Ѕ±гїмЛЩ°Щ¶ИЛСЛч.lnk
- %PROGRAM_FILES%\·Ѕ±гїмЛЩ°Щ¶ИЛСЛч\is-40R8Q.tmp
- %PROGRAM_FILES%\·Ѕ±гїмЛЩ°Щ¶ИЛСЛч\Isok.ini
- %PROGRAM_FILES%\·Ѕ±гїмЛЩ°Щ¶ИЛСЛч\unins000.dat
- %PROGRAM_FILES%\·Ѕ±гїмЛЩ°Щ¶ИЛСЛч\is-UF1TQ.tmp
- %TEMP%\is-8A813.tmp\_isetup\_RegDLL.tmp
- %TEMP%\is-E2J22.tmp\<Имя вируса>.tmp
- %PROGRAM_FILES%\·Ѕ±гїмЛЩ°Щ¶ИЛСЛч\is-L131M.tmp
- %TEMP%\is-8A813.tmp\_isetup\_shfoldr.dll
- %TEMP%\is-E2J22.tmp\<Имя вируса>.tmp
- %TEMP%\is-8A813.tmp\_isetup\_shfoldr.dll
- %TEMP%\is-8A813.tmp\_isetup\_RegDLL.tmp
- %PROGRAM_FILES%\·Ѕ±гїмЛЩ°Щ¶ИЛСЛч\is-40R8Q.tmp в %PROGRAM_FILES%\·Ѕ±гїмЛЩ°Щ¶ИЛСЛч\GetMessage.dll
- %PROGRAM_FILES%\·Ѕ±гїмЛЩ°Щ¶ИЛСЛч\is-UF1TQ.tmp в %PROGRAM_FILES%\·Ѕ±гїмЛЩ°Щ¶ИЛСЛч\FangBian.exe
- %PROGRAM_FILES%\·Ѕ±гїмЛЩ°Щ¶ИЛСЛч\is-L131M.tmp в %PROGRAM_FILES%\·Ѕ±гїмЛЩ°Щ¶ИЛСЛч\unins000.exe
- ClassName: 'Button' WindowName: '(null)'
- ClassName: '#32770' WindowName: '(null)'
- ClassName: 'TrayNotifyWnd' WindowName: '(null)'
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: 'ReBarWindow32' WindowName: '(null)'