Техническая информация
- %HOMEPATH%\Start Menu\Programs\Startup\<Имя вируса>.exe
- <SYSTEM32>\rundll32.exe <SYSTEM32>\shimgvw.dll,ImageView_Fullscreen %TEMP%\foto.jpg
- %TEMP%\logs.txt
- %TEMP%\foto.jpg
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\37966029234842412958196[1].jpg
- 'im####.imageshack.us':80
- im####.imageshack.us/img543/7784/37966029234842412958196.jpg
- DNS ASK im####.imageshack.us
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'ShImgVw:CPreviewWnd' WindowName: ''