Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Update' = '"%HOMEPATH%\wuuaucct.exe"'
- '%HOMEPATH%\hitax86.exe' "%HOMEPATH%\dtt32.zip" -d "%HOMEPATH%"
- '<SYSTEM32>\rundll32.exe' setupapi,InstallHinfSection DefaultInstall 132 %HOMEPATH%\kernel\SETUP_NT.INF
- %HOMEPATH%\kernel\TVICCOMM.VXD
- %HOMEPATH%\kernel\TVicComm.sys
- %HOMEPATH%\kernel\TVicCommSpy.ocx
- %HOMEPATH%\system64\sistema.txt
- %HOMEPATH%\kernel\TVicCommUnit.DCR
- %HOMEPATH%\hitax86.exe
- %HOMEPATH%\wuuaucct.exe
- %HOMEPATH%\dtt32.zip
- %HOMEPATH%\kernel\SETUP_NT.INF
- %HOMEPATH%\kernel\SETUP_9X.INF
- 'ft#.##ocajogos.net':21
- DNS ASK ft#.##ocajogos.net
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'