Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Active Setup\Installed Components\{122E97A1-A1A2-D22B-0406-050506070100}] 'StubPath' = '<Полный путь к вирусу>'
- %WINDIR%\Explorer.EXE
- ClassName: 'PROCMON_WINDOW_CLASS' WindowName: ''
- ClassName: 'RegMonClass' WindowName: ''
- ClassName: 'FileMonClass' WindowName: ''
- '83.##8.137.38':3460
- ClassName: 'ThunderRT6FormDC' WindowName: ''
- ClassName: 'ThunderRT6FormDC' WindowName: 'Shareware Cheater v 3.0'