Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] '<Полный путь к вирусу>' = '<Полный путь к вирусу>:*:Enabled:Youtube To MP3'
- [<HKLM>\SOFTWARE\Microsoft\MSNMessenger]
- %TEMP%\is799009782\1204306887.cfg
- %TEMP%\is799009782\1163196796.cfg
- %TEMP%\is799009782\662657193.cfg
- 'us####.awsdata.com':80
- 'cv.##eckver.org':80
- us####.awsdata.com/Prod/Y2MP3-GOOG-NBGOGO.cis
- us####.awsdata.com/Bund/Babylon/Babylon8_13055_AddOns.cis
- cv.##eckver.org/vscript/utils/IP2CC.psc
- us####.awsdata.com/Bund/AInstaller.CIS
- cv.##eckver.org/vscript/vercheck.psc?pc#############
- cv.##eckver.org/vscript/vercheck.psc?pc############
- DNS ASK us####.awsdata.com
- DNS ASK cv.##eckver.org
- ClassName: 'Shell_TrayWnd' WindowName: ''