Техническая информация
- '<SYSTEM32>\fange\10005070<Имя вируса>.exe' fan
- %HOMEPATH%\My Documents\CFSystem\Replay\TA Йъ»ЇЅрЧЦЛюЕАЗЅ.cfr
- %HOMEPATH%\My Documents\CFSystem\Replay\4·Ц23ГлЙъ»ЇЅЗ¶·іЎ.cfr
- %HOMEPATH%\My Documents\CFSystem\Replay\Ta-20ГлЙъ»ЇѕЖµкєу»ЁФ°.cfr
- %HOMEPATH%\My Documents\CFSystem\Replay\13єЕµШЗшЙП·ї.cfr
- %HOMEPATH%\My Documents\CFSystem\Replay\Ta-Йъ»ЇЅрЧЦЛюЕЬїбЧЁУГ1.cfr
- %HOMEPATH%\My Documents\CFSystem\Replay\2ИЛЙъ»ЇЙіД®.cfr
- <SYSTEM32>\fange\10005070<Имя вируса>.exe
- <SYSTEM32>\superecWsWYa.sys
- <SYSTEM32>\superecNSvec.sys
- %HOMEPATH%\My Documents\CFSystem\Replay\·«ёзРВВјЙъ»ЇѕЖµк8ИЛМЭ(НЖјцК№УГОЮґъВл).cfr
- %HOMEPATH%\My Documents\dkd.zip
- <SYSTEM32>\superecNSvec.sys
- <SYSTEM32>\superecWsWYa.sys
- 'www.32##36.com':80
- 'localhost':1040
- 'localhost':1038
- www.32##36.com/
- DNS ASK www.32##36.com
- ClassName: 'Button' WindowName: '4'
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'Button' WindowName: '3'
- ClassName: 'Button' WindowName: '1'
- ClassName: 'Button' WindowName: '2'
- ClassName: '#32770' WindowName: 'ДЈїйМбКѕ'
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'WTWindow' WindowName: '??????'
- ClassName: '#32770' WindowName: '????????'
- ClassName: 'WTWindow' WindowName: 'Инјю±¦'