Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'System Configuration' = 'System.exe'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\RunServices] 'System Configuration' = 'System.exe'
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'System Configuration' = 'System.exe'
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices] 'System Configuration' = 'System.exe'
- <SYSTEM32>\System.exe 360 "<Полный путь к вирусу>"
- ClassName: 'RegMonClass' WindowName: ''
- ClassName: 'FileMonClass' WindowName: ''
- %TEMP%\A26D5FAB.TMP
- <SYSTEM32>\System.exe
- <SYSTEM32>\System.exe
- 'ft#.#loodx.info':26418
- DNS ASK ft#.#loodx.info
- ClassName: 'mIRC' WindowName: ''
- ClassName: 'Indicator' WindowName: ''