Техническая информация
- C:\S54V4EZ.EXE 3JTRKOFCB
- <SYSTEM32>\reg.exe ADD "HKCU\Software\Microsoft\Internet Explorer\Main" /v Play_Animations /t REG_SZ /d no /F
- <SYSTEM32>\reg.exe ADD "HKCU\Software\Microsoft\Internet Explorer\Main" /v "Display Inline Videos" /t REG_SZ /d no /F
- <SYSTEM32>\regsvr32.exe /u /s msvidctl.dll
- <SYSTEM32>\reg.exe ADD "HKCU\Software\Microsoft\Internet Explorer\Main" /v "Display Inline Images" /t REG_SZ /d yes /F
- <SYSTEM32>\regsvr32.exe /s "%WINDIR%\vitbkchpfacdml.dll"
- <SYSTEM32>\cmd.exe /c ""C:\OFMPBUVHOWA.BAT" "
- <SYSTEM32>\cmd.exe /c C:\OFMPBUVHOWA.BAT
- %WINDIR%\vitbkchpfacdml.dll
- C:\OFMPBUVHOWA.BAT
- %WINDIR%\VITBKCHPFACDML.txt
- C:\S54V4EZ.EXE
- %PROGRAM_FILES%\9C8YPLA0HML\N7RQU1KTA.EXE
- %PROGRAM_FILES%\9C8YPLA0HML\N7RQU1KTA.EXE
- <Полный путь к вирусу>
- '58.#9.58.27':443
- ClassName: 'VITBKCHPFACDML' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'VITBKCHPFACDML' WindowName: 'ddpmmapu'