Техническая информация
- '%WINDIR%\regedit.exe' /s %WINDIR%\MegaLopeReg
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\2VAZY7AN\color[1].js
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\color[1].js
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\profillesatuais.com.brcolor[1]
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\YPORKZYZ\color[1].js
- %PROGRAM_FILES%\real\realplayer\rmoc32.dll
- %WINDIR%\MegaLope.Reg
- %PROGRAM_FILES%\real\realplayer\acpi.vxd
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\color[1].js
- %WINDIR%\system\<Имя вируса>.exe
- %PROGRAM_FILES%\real\realplayer\acpi.vxd
- %WINDIR%\MegaLope.Reg
- 'pe###asfull.com':80
- 'pr#######atuais.com.brcolor.js':80
- 'un####edfiles.com':80
- 'bl####ioconta.com':80
- 'un######iparticipacoes.com':80
- pe###asfull.com/color.js
- pr#######atuais.com.brcolor.js/
- un####edfiles.com/color.js
- bl####ioconta.com/color.js
- un######iparticipacoes.com/color.js
- DNS ASK pe###asfull.com
- DNS ASK pr#######atuais.com.brcolor.js
- DNS ASK un####edfiles.com
- DNS ASK bl####ioconta.com
- DNS ASK un######iparticipacoes.com
- ClassName: 'RegEdit_RegEdit' WindowName: '(null)'
- ClassName: 'AcoBruto' WindowName: '(null)'