Техническая информация
- [<HKLM>\SOFTWARE\Classes\htnw File\shell\open\command] '' = '%PROGRAM_FILES%\PInfo\Dialers\Lisa\Lisa.exe %1'
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Lisa' = '%PROGRAM_FILES%\PInfo\Dialers\Lisa\Lisa.exe /dontdial '
- %PROGRAM_FILES%\pinfo\dialers\lisa\lisa.exe -kill <Полный путь к вирусу> /install
- ClassName: 'AOL Frame25' WindowName: ''
- %HOMEPATH%\Desktop\Lisa.lnk
- %TEMP%\WK_1.tmp
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\index01[1].jhtml
- %PROGRAM_FILES%\pinfo\dialers\lisa\lisa.exe
- %HOMEPATH%\Start Menu\Lisa.lnk
- %HOMEPATH%\Start Menu\Programs\Lisa.lnk
- '19#.#88.43.168':80
- '20#.#77.92.193':80
- 'localhost':1036
- 19#.#88.43.168/w/getclientid?sr##################################################################################################
- 20#.#77.92.193/party/affPP/index01.jhtml?pi##############################################
- ClassName: '' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'LISA' WindowName: 'Lisa'
- ClassName: '' WindowName: 'Lisa'
- ClassName: 'Shell_TrayWnd' WindowName: ''