Техническая информация
- [<HKLM>\SOFTWARE\Classes\BPDFileType.Document\shell\open\command] '' = '<Полный путь к вирусу> "%1"'
- [<HKLM>\SOFTWARE\Classes\.bpd\shell\open\command] '' = '<Полный путь к вирусу> "%1"'
- %ALLUSERSPROFILE%\Application Data\Downloader\log.txt
- %ALLUSERSPROFILE%\Application Data\Downloader\Downloader.config
- %HOMEPATH%\My Documents\My Videos\Desktop.ini
- <LS_APPDATA>\Downloader\Downloader.config
- %HOMEPATH%\My Documents\My Videos\Desktop.ini
- 'bi####dmusic.com':80
- 'localhost':1039
- 'wp#d':80
- bi####dmusic.com/NowDownloading.aspx
- wp#d/wpad.dat
- DNS ASK bi####dmusic.com
- DNS ASK wp#d
- ClassName: 'NDDEAgnt' WindowName: 'NetDDE Agent'
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''