Техническая информация
- [<HKCU>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Chromium' = 'rundll32 "<LS_APPDATA>\Microsoft Help\Chromium\ifmmag.dll",DllRegisterServer'
- [\REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Chromium' = 'rundll32 "<LS_APPDATA>\Microsoft Help\Chromium\ifmmag.dll",DllRegisterServer'
- [\REGISTRY\USER\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Chromium' = 'rundll32 "<LS_APPDATA>\Microsoft Help\Chromium\ifmmag.dll",DllRegisterServer'
- firefox.exe
- %TEMP%\nss2.tmp
- %TEMP%\pvncdlxh\pvncdlxh.dll
- %TEMP%\nsk3.tmp\system.dll
- <LS_APPDATA>\microsoft help\chromium\ifmmag.dll
- %APPDATA%\mozilla\firefox\profiles\22ie2h77.default\extensions\yuhbvntrjk@yuhbvntrjk.org.xpi
- <LS_APPDATA>\google\chrome\user data\default\users\ohkgefibmgiolbmhacdblkpnpinniend\background.js
- <LS_APPDATA>\google\chrome\user data\default\users\ohkgefibmgiolbmhacdblkpnpinniend\cs.js
- <LS_APPDATA>\google\chrome\user data\default\users\ohkgefibmgiolbmhacdblkpnpinniend\manifest.json
- %TEMP%\pvncdlxh\nmcsossh.dll
- %TEMP%\etilqs_ktogqjjsviqlfe3
- %TEMP%\etilqs_ruc9c7wtrcutya1
- 'localhost':1037
- ClassName: 'OleMainThreadWndClass' WindowName: ''
- '%ProgramFiles%\mozilla firefox\firefox.exe'
- '<SYSTEM32>\rundll32.exe' "<LS_APPDATA>\Microsoft Help\Chromium\ifmmag.dll",DllRegisterServer