Техническая информация
- '%TEMP%\~DF1.tmp' <Полный путь к вирусу>
- [<HKCU>_Classes\Software\Mirabilis\ICQ\NewOwners]
- [\REGISTRY\USER\S-1-5-20_Classes\Software\Mirabilis\ICQ\NewOwners]
- [\REGISTRY\USER\S-1-5-18\Software\Mirabilis\ICQ\NewOwners]
- [<HKCU>\Software\Google\Google Talk\Accounts]
- [<HKCU>\SOFTWARE\MICROSOFT\MessengerService]
- [\REGISTRY\USER\S-1-5-20\Software\Mirabilis\ICQ\NewOwners]
- [<HKCU>\Software\Ghisler\Total Commander]
- [<HKLM>\Software\Ghisler\Total Commander]
- [<HKCU>\Software\Mirabilis\ICQ\NewOwners]
- [\REGISTRY\USER\S-1-5-19_Classes\Software\Mirabilis\ICQ\NewOwners]
- [\REGISTRY\USER\S-1-5-19\Software\Mirabilis\ICQ\NewOwners]
- %TEMP%\~DF1.tmp
- <Текущая директория>\msdk32n.dat