Техническая информация
- [<HKLM>\SOFTWARE\Classes\htnw File\shell\open\command] '' = '%PROGRAM_FILES%\PInfo\Dialers\Daily_Gallery\Daily_Gallery.exe %1'
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Daily_Gallery' = '%PROGRAM_FILES%\PInfo\Dialers\Daily_Gallery\Daily_Gallery.exe /dontdial '
- %PROGRAM_FILES%\pinfo\dialers\daily_gallery\daily_gallery.exe -kill <Полный путь к вирусу> /install
- ClassName: 'AOL Frame25' WindowName: ''
- %HOMEPATH%\Desktop\Daily_Gallery.lnk
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\re[1].php
- %HOMEPATH%\Start Menu\Programs\Daily_Gallery.lnk
- %PROGRAM_FILES%\pinfo\dialers\daily_gallery\daily_gallery.exe
- %HOMEPATH%\Start Menu\Daily_Gallery.lnk
- 'www.ad#####venueservice.com':80
- '19#.#88.43.168':80
- 'localhost':1036
- www.ad#####venueservice.com/re.php?s=############################################################################################################
- 19#.#88.43.168/w/getclientid?sr###########################################################################################################
- DNS ASK www.ad#####venueservice.com
- ClassName: '' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'DAILY_GALLERY' WindowName: 'Daily_Gallery'
- ClassName: '' WindowName: 'Daily_Gallery'
- ClassName: 'Shell_TrayWnd' WindowName: ''