Техническая информация
- %HOMEPATH%\Start Menu\Programs\Startup\Winlogin.lnk
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\Ur0OE[1]
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\Ur0LZ[1]
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\YPORKZYZ\UsBvz[1]
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\2VAZY7AN\UsBqs[1]
- %TEMP%\aut1.tmp
- %APPDATA%\data1\<Имя вируса>.exe
- %APPDATA%\data1\Adobe.bat
- %APPDATA%\data1\WinLogin.vbe
- %TEMP%\aut1.tmp
- 'localhost':1040
- 'localhost':1042
- 'localhost':1038
- 'localhost':1035
- 'ad#.ly':80
- ad#.ly/UsBqs
- ad#.ly/UsBvz
- ad#.ly/Ur0LZ
- ad#.ly/Ur0OE
- DNS ASK ad#.ly
- ClassName: 'MS_AutodialMonitor' WindowName: '(null)'
- ClassName: 'MS_WebcheckMonitor' WindowName: '(null)'
- ClassName: '' WindowName: '(null)'
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'