Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'system' = '%WINDIR%\system.JPG'
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'ESET' = '%PROGRAM_FILES%\alaplaya\S4League\Dump\Eset.exe'
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Windows Live Messenger' = '%PROGRAM_FILES%\Windows Live\Messenger\Msn.exe'
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'services' = '%WINDIR%\services.exe'
- %WINDIR%\system.JPG
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\6ngvw[1].png
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\6ngvw[1].png
- 'g1###.#izliresim.com':80
- g1###.#izliresim.com/x/s/6ngvw.png
- DNS ASK g1###.#izliresim.com