Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] '<Полный путь к вирусу>' = '<Полный путь к вирусу>:*:Enabled:Youtube To MP3'
- [<HKLM>\SOFTWARE\Microsoft\MSNMessenger]
- %TEMP%\is799009782\812648585.cfg
- %TEMP%\is799009782\471285299.cfg
- 'us####.dtday.com':80
- 'cv.##eckver.org':80
- us####.dtday.com/Bundle/Babylon8_sq_14542.cis
- us####.dtday.com/Y2MP3-GOOG-NBGOGO.cis
- cv.##eckver.org/vscript/utils/IP2CC.psc
- cv.##eckver.org/vscript/vercheck.psc?pc############
- cv.##eckver.org/vscript/vercheck.psc?pc#############
- DNS ASK us####.dtday.com
- DNS ASK cv.##eckver.org
- ClassName: 'Shell_TrayWnd' WindowName: ''