Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'inet' = '"%PROGRAM_FILES%\Kw\svchst.exe"'
- '%PROGRAM_FILES%\Kw\explrer.exe'
- '%PROGRAM_FILES%\Kw\wmiprvs.exe'
- '%PROGRAM_FILES%\Kw\svchst.exe' "<Полный путь к вирусу>"
- '%WINDIR%\regedit.exe' /s "%PROGRAM_FILES%\Kw\osm.sys"
- <SYSTEM32>\VB6STKIT.DLL
- %PROGRAM_FILES%\Kw\wmiprvs.exe
- <DRIVERS>\PORTMSYS.SYS
- %PROGRAM_FILES%\Kw\explrer.exe
- %PROGRAM_FILES%\Kw\svchst.exe
- %PROGRAM_FILES%\Kw\osm.sys
- %PROGRAM_FILES%\Kw\svchst.exe
- %PROGRAM_FILES%\Kw\explrer.exe
- %TEMP%\~DFD5A.tmp
- ClassName: 'TGroupBox' WindowName: ' Parameter Control : '
- ClassName: 'TEdit' WindowName: '(null)'
- ClassName: 'TCheckBox' WindowName: 'Log To File'
- ClassName: 'TGroupBox' WindowName: '(null)'
- ClassName: 'TGroupBox' WindowName: ' COM: '
- ClassName: 'TCheckListBox' WindowName: '(null)'
- ClassName: 'TButton' WindowName: 'OK'
- ClassName: 'TButton' WindowName: 'Install'
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: 'TPageControl' WindowName: '(null)'
- ClassName: 'RegEdit_RegEdit' WindowName: '(null)'
- ClassName: 'TfrmMain' WindowName: 'osm2000 com serial'
- ClassName: 'TGroupBox' WindowName: 'Data Logger : '
- ClassName: 'TEdit' WindowName: 'ModingCom.log'
- ClassName: 'TTabSheet' WindowName: 'osm2000QQ28107384'
- ClassName: 'TPanel' WindowName: '(null)'