Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Active Setup\Installed Components\{646FCA25-A758-1B6D-E0AD-6EAF48C122C1}] 'stubpath' = ''
- <SYSTEM32>\55.exe
- <SYSTEM32>\rundll32.exe <SYSTEM32>\shimgvw.dll,ImageView_Fullscreen <SYSTEM32>\247347_104848452942176_100002510653932_40648_423805_n.jpg
- %WINDIR%\Explorer.EXE
- <SYSTEM32>\rar\rar.exe
- %HOMEPATH%\Recent\247347_104848452942176_100002510653932_40648_423805_n.lnk
- %HOMEPATH%\Recent\system32.lnk
- %TEMP%\sfx.ini
- <SYSTEM32>\247347_104848452942176_100002510653932_40648_423805_n.jpg
- <SYSTEM32>\55.exe
- <SYSTEM32>\rar\rar.exe
- %TEMP%\sfx.ini
- 'hm####2.hopto.org':81
- 'ra####289.no-ip.biz':81
- DNS ASK hm####2.hopto.org
- DNS ASK ra####289.no-ip.biz
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'ShImgVw:CPreviewWnd' WindowName: ''