Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] '<Имя вируса>' = '<Полный путь к вирусу>'
- '<SYSTEM32>\sc.exe' stop sharedaccess
- ClassName: 'TXGuiFoundation' WindowName: '电脑管家'
- ClassName: 'TXGuiFoundation' WindowName: '????'
- ClassName: 'TXGuiFoundation' WindowName: '电脑管家:开机时间'
- ClassName: 'TXGuiFoundation' WindowName: '????:????'
- ClassName: 'TXGuiFoundation' WindowName: '小火箭通用加速'
- ClassName: 'TXGuiFoundation' WindowName: '???????'
- ClassName: 'TXGuiFoundation' WindowName: '电脑管家 - 软件管理'
- ClassName: 'TXGuiFoundation' WindowName: '???? - ????'
- <Текущая директория>\WebServ.config
- <Текущая директория>\WebServ.config
- 'c.###cn8.com':80
- http://c.###cn8.com/test/WebServ.txt
- DNS ASK c.###cn8.com
- ClassName: '#32770 (???)' WindowName: 'KaKa Player'
- ClassName: 'BDMTips' WindowName: 'BDMTrayTipWnd'
- ClassName: 'BDMSusFrame' WindowName: 'SusWnd'
- ClassName: '#32770 (对话框)' WindowName: 'KaKa Player'
- ClassName: 'ToolbarWindow32' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'CGtnPKpk' WindowName: 'CAkJXpslwDynTUzZ'
- ClassName: 'Syspager' WindowName: ''
- ClassName: 'TrayNotifyWnd' WindowName: ''