Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Vide0Driver' = 'Vide0.exe'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'VideoDriver' = '"%TEMP%\Vide0.exe"'
- %TEMP%\winpicture.dll
- %TEMP%\Vide0.exe
- <Текущая директория>\winpicture.dll
- %TEMP%\Vide0.exe
- 'q0##.info':26
- DNS ASK q0##.info
- ClassName: 'Indicator' WindowName: ''