Техническая информация
Для обеспечения автозапуска и распространения:
Модифицирует следующие ключи реестра:
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'explorer' = '%WINDIR%\explorer.lnk'
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'explorer' = '%WINDIR%\explorer.lnk'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'network' = '%WINDIR%\network.exe'
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'network' = '%WINDIR%\network'
Изменения в файловой системе:
Создает следующие файлы:
- %WINDIR%\Win7\msprivs.dll
- %WINDIR%\Win7\msmmsp.dll
- %WINDIR%\Win7\msrle32.dll
- %WINDIR%\Win7\MsraLegacy.tlb
- %WINDIR%\Win7\msidntld.dll
- %WINDIR%\Win7\msidle.dll
- %WINDIR%\Win7\msimg32.dll
- %WINDIR%\Win7\msiltcfg.dll
- %WINDIR%\Win7\msshooks.dll
- %WINDIR%\Win7\muifontsetup.dll
- %WINDIR%\Win7\mtxex.dll
- %WINDIR%\Win7\NativeHooks.dll
- %WINDIR%\Win7\MUILanguageCleanup.dll
- %WINDIR%\Win7\msswch.dll
- %WINDIR%\Win7\mssip32.dll
- %WINDIR%\Win7\msxml6r.dll
- %WINDIR%\Win7\msxml3r.dll
- %WINDIR%\Win7\montr_ci.dll
- %WINDIR%\Win7\mmcico.dll
- %WINDIR%\Win7\mpnotify.exe
- %WINDIR%\Win7\mountvol.exe
- %WINDIR%\Win7\mferror.dll
- %WINDIR%\Win7\memdiag.dll
- %WINDIR%\Win7\migwiz.lnk
- %WINDIR%\Win7\microsoft-windows-hal-events.dll
- %WINDIR%\Win7\MRINFO.EXE
- %WINDIR%\Win7\msfeedssync.exe
- %WINDIR%\Win7\msdxm.ocx
- %WINDIR%\Win7\mshta.exe
- %WINDIR%\Win7\msg711.acm
- %WINDIR%\Win7\mscat32.dll
- %WINDIR%\Win7\msafd.dll
- %WINDIR%\Win7\msdatsrc.tlb
- %WINDIR%\Win7\msctfime.ime
- %WINDIR%\Win7\nbtstat.exe
- %WINDIR%\Win7\onlinesetup.cmd
- %WINDIR%\Win7\oleaccrc.dll
- %WINDIR%\Win7\panmap.dll
- %WINDIR%\Win7\osuninst.dll
- %WINDIR%\Win7\ntvdm64.dll
- %WINDIR%\Win7\ntlanui2.dll
- %WINDIR%\Win7\oleacchooks.dll
- %WINDIR%\Win7\odbcconf.rsp
- %WINDIR%\Win7\PATHPING.EXE
- %WINDIR%\Win7\pcwrun.exe
- %WINDIR%\Win7\pcl.sep
- %WINDIR%\Win7\perfts.dll
- %WINDIR%\Win7\pcwutl.dll
- %WINDIR%\Win7\pcalua.exe
- %WINDIR%\Win7\pcaevts.dll
- %WINDIR%\Win7\pcawrk.exe
- %WINDIR%\Win7\pcaui.exe
- %WINDIR%\Win7\netmsg.dll
- %WINDIR%\Win7\neth.dll
- %WINDIR%\Win7\NlsLexicons002a.dll
- %WINDIR%\Win7\nlmsprep.dll
- %WINDIR%\Win7\NdfEventView.xml
- %WINDIR%\Win7\nddeapi.dll
- %WINDIR%\Win7\netevent.dll
- %WINDIR%\Win7\netbios.dll
- %WINDIR%\Win7\NOISE.CHS
- %WINDIR%\Win7\normaliz.dll
- %WINDIR%\Win7\NOISE.THA
- %WINDIR%\Win7\nsi.dll
- %WINDIR%\Win7\nrpsrv.dll
- %WINDIR%\Win7\NOISE.DAT
- %WINDIR%\Win7\NOISE.CHT
- %WINDIR%\Win7\noise.kor
- %WINDIR%\Win7\noise.jpn
- %WINDIR%\Win7\mctres.dll
- %WINDIR%\Win7\KBDTAJIK.DLL
- %WINDIR%\Win7\KBDSYR2.DLL
- %WINDIR%\Win7\KBDTH0.DLL
- %WINDIR%\Win7\KBDTAT.DLL
- %WINDIR%\Win7\KBDSW.DLL
- %WINDIR%\Win7\KBDSP.DLL
- %WINDIR%\Win7\KBDSYR1.DLL
- %WINDIR%\Win7\KBDSW09.DLL
- %WINDIR%\Win7\KBDTH1.DLL
- %WINDIR%\Win7\KBDTURME.DLL
- %WINDIR%\Win7\KBDTUQ.DLL
- %WINDIR%\Win7\KBDUGHR1.DLL
- %WINDIR%\Win7\KBDUGHR.DLL
- %WINDIR%\Win7\KBDTH3.DLL
- %WINDIR%\Win7\KBDTH2.DLL
- %WINDIR%\Win7\KBDTUF.DLL
- %WINDIR%\Win7\KBDTIPRC.DLL
- %WINDIR%\Win7\KBDRU.DLL
- %WINDIR%\Win7\KBDROST.DLL
- %WINDIR%\Win7\KBDSF.DLL
- %WINDIR%\Win7\KBDRU1.DLL
- %WINDIR%\Win7\KBDPO.DLL
- %WINDIR%\Win7\KBDPL1.DLL
- %WINDIR%\Win7\KBDROPR.DLL
- %WINDIR%\Win7\KBDRO.DLL
- %WINDIR%\Win7\KBDSG.DLL
- %WINDIR%\Win7\KBDSOREX.DLL
- %WINDIR%\Win7\KBDSN1.DLL
- %WINDIR%\Win7\KBDSORST.DLL
- %WINDIR%\Win7\KBDSORS1.DLL
- %WINDIR%\Win7\KBDSL1.DLL
- %WINDIR%\Win7\KBDSL.DLL
- %WINDIR%\Win7\KBDSMSNO.DLL
- %WINDIR%\Win7\KBDSMSFI.DLL
- %WINDIR%\Win7\KBDUK.DLL
- %WINDIR%\Win7\ktmutil.exe
- %WINDIR%\Win7\ksuser.dll
- %WINDIR%\Win7\LAPRXY.DLL
- %WINDIR%\Win7\label.exe
- %WINDIR%\Win7\kdusb.dll
- %WINDIR%\Win7\kdcom.dll
- %WINDIR%\Win7\korean.uce
- %WINDIR%\Win7\kernelceip.dll
- %WINDIR%\Win7\lltdres.dll
- %WINDIR%\Win7\lz32.dll
- %WINDIR%\Win7\lpksetupproxyserv.dll
- %WINDIR%\Win7\manage-bde.wsf
- %WINDIR%\Win7\l_intl.nls
- %WINDIR%\Win7\locationnotificationsview.xml
- %WINDIR%\Win7\localui.dll
- %WINDIR%\Win7\logs\nginx.pid
- %WINDIR%\Win7\Locator.exe
- %WINDIR%\Win7\KBDUSA.DLL
- %WINDIR%\Win7\KBDUS.DLL
- %WINDIR%\Win7\KBDUSR.DLL
- %WINDIR%\Win7\KBDUSL.DLL
- %WINDIR%\Win7\KBDUR.DLL
- %WINDIR%\Win7\KBDUKX.DLL
- %WINDIR%\Win7\KBDURDU.DLL
- %WINDIR%\Win7\KBDUR1.DLL
- %WINDIR%\Win7\KBDUSX.DLL
- %WINDIR%\Win7\KBDYCC.DLL
- %WINDIR%\Win7\KBDYBA.DLL
- %WINDIR%\Win7\kd1394.dll
- %WINDIR%\Win7\KBDYCL.DLL
- %WINDIR%\Win7\KBDVNTC.DLL
- %WINDIR%\Win7\KBDUZB.DLL
- %WINDIR%\Win7\KBDYAK.DLL
- %WINDIR%\Win7\KBDWOL.DLL
- %WINDIR%\Win7\PING.EXE
- %WINDIR%\Win7\uxlibres.dll
- %WINDIR%\Win7\usbperf.dll
- %WINDIR%\Win7\vga.dll
- %WINDIR%\Win7\verclsid.exe
- %WINDIR%\Win7\tzres.dll
- %WINDIR%\Win7\txfw32.dll
- %WINDIR%\Win7\umstartup.etl
- %WINDIR%\Win7\umdmxfrm.dll
- %WINDIR%\Win7\vmbuspipe.dll
- %WINDIR%\Win7\winbrand.dll
- %WINDIR%\Win7\wiatrace.dll
- %WINDIR%\Win7\winrssrv.dll
- %WINDIR%\Win7\winrsmgr.dll
- %WINDIR%\Win7\WEB.rs
- %WINDIR%\Win7\WdsUnattendTemplate.xml
- %WINDIR%\Win7\WiaExtensionHost64.dll
- %WINDIR%\Win7\whhelper.dll
- %WINDIR%\Win7\TCPSVCS.EXE
- %WINDIR%\Win7\tcpbidi.xml
- %WINDIR%\Win7\TimeDateMUICallback.dll
- %WINDIR%\Win7\ticrf.rat
- %WINDIR%\Win7\TapiUnattend.exe
- %WINDIR%\Win7\TapiSysprep.dll
- %WINDIR%\Win7\tcmsetup.exe
- %WINDIR%\Win7\tbs.dll
- %WINDIR%\Win7\TRACERT.EXE
- %WINDIR%\Win7\TsPnPRdrCoInstaller.dll
- %WINDIR%\Win7\TSErrRedir.dll
- %WINDIR%\Win7\TsUsbRedirectionGroupPolicyExtension.dll
- %WINDIR%\Win7\TsUsbRedirectionGroupPolicyControl.exe
- %WINDIR%\Win7\tsbyuv.dll
- %WINDIR%\Win7\tree.com
- %WINDIR%\Win7\tsddd.dll
- %WINDIR%\Win7\TSChannel.dll
- %WINDIR%\Win7\winshfhc.dll
- %WINDIR%\Win7\wsmanconfig_schema.xml
- %WINDIR%\Win7\WSHTCPIP.DLL
- %WINDIR%\Win7\wsmprovhost.exe
- %WINDIR%\Win7\wsmplpxy.dll
- %WINDIR%\Win7\wshnetbs.dll
- %WINDIR%\Win7\wshirda.dll
- %WINDIR%\Win7\wshrm.dll
- %WINDIR%\Win7\wshqos.dll
- %WINDIR%\Win7\WsmPty.xsl
- %WINDIR%\Win7\xwizard.dtd
- %WINDIR%\Win7\x3daudio1_1.dll
- %PROGRAM_FILES%\Company\setup\Uninstall.ini
- %PROGRAM_FILES%\Company\setup\Uninstall.exe
- %WINDIR%\Win7\wsock32.dll
- %WINDIR%\Win7\WsmTxt.xsl
- %WINDIR%\Win7\x3daudio1_0.dll
- %WINDIR%\Win7\wwaninst.dll
- %WINDIR%\Win7\wmerror.dll
- %WINDIR%\Win7\WlS0WndH.dll
- %WINDIR%\Win7\wmsgapi.dll
- %WINDIR%\Win7\wmi.dll
- %WINDIR%\Win7\wksprtPS.dll
- %WINDIR%\Win7\winusb.dll
- %WINDIR%\Win7\wlanutil.dll
- %WINDIR%\Win7\wlaninst.dll
- %WINDIR%\Win7\wow64cpu.dll
- %WINDIR%\Win7\wscproxystub.dll
- %WINDIR%\Win7\ws2help.dll
- %WINDIR%\Win7\wship6.dll
- %WINDIR%\Win7\wshelper.dll
- %WINDIR%\Win7\wpcmig.dll
- %WINDIR%\Win7\wowreg32.exe
- %WINDIR%\Win7\write.exe
- %WINDIR%\Win7\wpcsvc.dll
- %WINDIR%\Win7\tapiperf.dll
- %WINDIR%\Win7\RestartManager.mof
- %WINDIR%\Win7\reset.exe
- %WINDIR%\Win7\riched32.dll
- %WINDIR%\Win7\RestartManagerUninstall.mof
- %WINDIR%\Win7\regsvr32.exe
- %WINDIR%\Win7\regidle.dll
- %WINDIR%\Win7\replace.exe
- %WINDIR%\Win7\rendezvousSession.tlb
- %WINDIR%\Win7\RmClient.exe
- %WINDIR%\Win7\sas.dll
- %WINDIR%\Win7\SampleRes.dll
- %WINDIR%\Win7\ScavengeSpace.xml
- %WINDIR%\Win7\sbunattend.exe
- %WINDIR%\Win7\RpcDiag.dll
- %WINDIR%\Win7\rnr20.dll
- %WINDIR%\Win7\runas.exe
- %WINDIR%\Win7\RpcNs4.dll
- %WINDIR%\Win7\procinst.dll
- %WINDIR%\Win7\PrintIsolationHost.exe
- %WINDIR%\Win7\query.exe
- %WINDIR%\Win7\psapi.dll
- %WINDIR%\Win7\pnpts.dll
- %WINDIR%\Win7\plasrv.exe
- %WINDIR%\Win7\print.exe
- %WINDIR%\Win7\prflbmsg.dll
- %WINDIR%\Win7\rasadhlp.dll
- %WINDIR%\Win7\ReAgentc.exe
- %WINDIR%\Win7\rdpcfgex.dll
- %WINDIR%\Win7\regedt32.exe
- %WINDIR%\Win7\recover.exe
- %WINDIR%\Win7\rasctrnm.h
- %WINDIR%\Win7\rasautou.exe
- %WINDIR%\Win7\rasdial.exe
- %WINDIR%\Win7\rasctrs.dll
- %WINDIR%\Win7\scrnsave.scr
- %WINDIR%\Win7\spwmp.dll
- %WINDIR%\Win7\spwizres.dll
- %WINDIR%\Win7\sscore.dll
- %WINDIR%\Win7\srdelayed.exe
- %WINDIR%\Win7\spnet.dll
- %WINDIR%\Win7\spcmsg.dll
- %WINDIR%\Win7\spwinsat.dll
- %WINDIR%\Win7\spopk.dll
- %WINDIR%\Win7\stdole2.tlb
- %WINDIR%\Win7\sysprtj.sep
- %WINDIR%\Win7\sysprint.sep
- %WINDIR%\Win7\systray.exe
- %WINDIR%\Win7\syssetup.dll
- %WINDIR%\Win7\subst.exe
- %WINDIR%\Win7\stdole32.tlb
- %WINDIR%\Win7\sysprepMCE.dll
- %WINDIR%\Win7\SyncHostps.dll
- %WINDIR%\Win7\sfc.dll
- %WINDIR%\Win7\setupetw.dll
- %WINDIR%\Win7\ShiftJIS.uce
- %WINDIR%\Win7\shfolder.dll
- %WINDIR%\Win7\security.dll
- %WINDIR%\Win7\secinit.exe
- %WINDIR%\Win7\serialui.dll
- %WINDIR%\Win7\SensApi.dll
- %WINDIR%\Win7\shimeng.dll
- %WINDIR%\Win7\snmptrap.exe
- %WINDIR%\Win7\slwga.dll
- %WINDIR%\Win7\spcinstrumentation.man
- %WINDIR%\Win7\softpub.dll
- %WINDIR%\Win7\shunimpl.dll
- %WINDIR%\Win7\shpafact.dll
- %WINDIR%\Win7\slcext.dll
- %WINDIR%\Win7\simpdata.tlb
- %WINDIR%\Win7\KBDPL.DLL
- %WINDIR%\Win7\d3d8thk.dll
- %WINDIR%\Win7\C_ISCII.DLL
- %WINDIR%\Win7\dcomcnfg.exe
- %WINDIR%\Win7\dciman32.dll
- %WINDIR%\Win7\csrss.exe
- %WINDIR%\Win7\csrr.rs
- %WINDIR%\Win7\C_IS2022.DLL
- %WINDIR%\Win7\ctfmon.exe
- %WINDIR%\Win7\DDACLSys.dll
- %WINDIR%\Win7\diskcomp.com
- %WINDIR%\Win7\dinotify.exe
- %WINDIR%\Win7\diskperf.exe
- %WINDIR%\Win7\diskcopy.com
- %WINDIR%\Win7\desktop.ini
- %WINDIR%\Win7\defragproxy.dll
- %WINDIR%\Win7\dhcpcmonitor.dll
- %WINDIR%\Win7\DeviceUxRes.dll
- %WINDIR%\Win7\conf\koi-utf
- %WINDIR%\Win7\conf\fastcgi_params
- %WINDIR%\Win7\conf\mime.types
- %WINDIR%\Win7\conf\koi-win
- %WINDIR%\Win7\comcat.dll
- %WINDIR%\Win7\cngaudit.dll
- %WINDIR%\Win7\conf\fastcgi.conf
- %WINDIR%\Win7\compact.exe
- %WINDIR%\Win7\conf\nginx.conf
- %WINDIR%\Win7\contrib\unicode2nginx\koi-utf
- %WINDIR%\Win7\contrib\README
- %WINDIR%\Win7\contrib\unicode2nginx\win-utf
- %WINDIR%\Win7\contrib\unicode2nginx\unicode-to-nginx.pl
- %WINDIR%\Win7\conf\uwsgi_params
- %WINDIR%\Win7\conf\scgi_params
- %WINDIR%\Win7\contrib\geo2nginx.pl
- %WINDIR%\Win7\conf\win-utf
- %WINDIR%\Win7\dispex.dll
- %WINDIR%\Win7\explorer.exe
- %WINDIR%\Win7\EventViewer_EventDetails.xsl
- %WINDIR%\Win7\fdBthProxy.dll
- %WINDIR%\explorer.lnk
- %WINDIR%\Win7\Eap3Host.exe
- %WINDIR%\Win7\dxmasf.dll
- %WINDIR%\Win7\eventcls.dll
- %WINDIR%\Win7\efsui.exe
- %WINDIR%\Win7\fdPHost.dll
- %WINDIR%\Win7\framebuf.dll
- %WINDIR%\Win7\fltLib.dll
- %WINDIR%\Win7\FXSUNATD.exe
- %WINDIR%\Win7\FXSEVENT.dll
- %WINDIR%\Win7\finger.exe
- %WINDIR%\Win7\find.exe
- %WINDIR%\Win7\fixmapi.exe
- %WINDIR%\Win7\Firewall.cpl
- %WINDIR%\Win7\docs\CHANGES.ru
- %WINDIR%\Win7\docs\CHANGES
- %WINDIR%\Win7\docs\OpenSSL.LICENSE
- %WINDIR%\Win7\docs\LICENSE
- %WINDIR%\Win7\dllhst3g.exe
- %WINDIR%\Win7\dllhost.exe
- %WINDIR%\Win7\dnsext.dll
- %WINDIR%\Win7\dmdskres2.dll
- %WINDIR%\Win7\docs\PCRE.LICENCE
- %WINDIR%\Win7\dpnhupnp.dll
- %WINDIR%\Win7\dpnhpast.dll
- %WINDIR%\Win7\dvdplay.exe
- %WINDIR%\Win7\dpnlobby.dll
- %WINDIR%\Win7\docs\zlib.LICENSE
- %WINDIR%\Win7\docs\README
- %WINDIR%\Win7\dpnaddr.dll
- %WINDIR%\Win7\doskey.exe
- %WINDIR%\Win7\cmstplua.dll
- %WINDIR%\Win7\api-ms-win-core-memory-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-core-localregistry-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-core-namedpipe-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-core-misc-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-core-io-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-core-interlocked-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-core-localization-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-core-libraryloader-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-core-processenvironment-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-core-sysinfo-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-core-synch-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-core-ums-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-core-threadpool-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-core-profile-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-core-processthreads-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-core-string-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-core-rtlsupport-l1-1-0.dll
- %WINDIR%\Win7\acproxy.dll
- %WINDIR%\Win7\acledit.dll
- %WINDIR%\Win7\amcompat.tlb
- %WINDIR%\Win7\aecache.dll
- %TEMP%\$inst\temp_0.tmp
- %TEMP%\$inst\2.tmp
- %WINDIR%\network.exe
- <DRIVERS>\etc\hosts.txt
- %WINDIR%\Win7\api-ms-win-core-console-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-core-file-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-core-fibers-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-core-heap-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-core-handle-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-core-debug-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-core-datetime-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-core-errorhandling-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-core-delayload-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-core-util-l1-1-0.dll
- %WINDIR%\Win7\bootstr.dll
- %WINDIR%\Win7\blbres.dll
- %WINDIR%\Win7\bridgeres.dll
- %WINDIR%\Win7\brcoinst.dll
- %WINDIR%\Win7\bitsprx3.dll
- %WINDIR%\Win7\bitsprx2.dll
- %WINDIR%\Win7\bitsprx6.dll
- %WINDIR%\Win7\bitsprx4.dll
- %WINDIR%\Win7\browseui.dll
- %WINDIR%\Win7\CIRCoInst.dll
- %WINDIR%\Win7\CHxReadingStringIME.dll
- %WINDIR%\Win7\cmdkey.exe
- %WINDIR%\Win7\clb.dll
- %WINDIR%\Win7\change.exe
- %WINDIR%\Win7\BWUnpairElevated.dll
- %WINDIR%\Win7\chkntfs.exe
- %WINDIR%\Win7\chcp.com
- %WINDIR%\Win7\api-ms-win-service-management-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-service-core-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-service-winsvc-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-service-management-l2-1-0.dll
- %WINDIR%\Win7\api-ms-win-security-base-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-core-xstate-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-security-sddl-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-security-lsalookup-l1-1-0.dll
- %WINDIR%\Win7\apilogen.dll
- %WINDIR%\Win7\atipblag.dat
- %WINDIR%\Win7\atiglpxx.dll
- %WINDIR%\Win7\avrt.dll
- %WINDIR%\Win7\attrib.exe
- %WINDIR%\Win7\appidcertstorecheck.exe
- %WINDIR%\Win7\apisetschema.dll
- %WINDIR%\Win7\atig6pxx.dll
- %WINDIR%\Win7\asferror.dll
- %WINDIR%\Win7\GettingStarted.exe
- %WINDIR%\Win7\KBDINBE2.DLL
- %WINDIR%\Win7\KBDINBE1.DLL
- %WINDIR%\Win7\KBDINDEV.DLL
- %WINDIR%\Win7\KBDINBEN.DLL
- %WINDIR%\Win7\KBDIBO.DLL
- %WINDIR%\Win7\kbdibm02.dll
- %WINDIR%\Win7\KBDINASA.DLL
- %WINDIR%\Win7\KBDIC.DLL
- %WINDIR%\Win7\KBDINGUJ.DLL
- %WINDIR%\Win7\KBDINPUN.DLL
- %WINDIR%\Win7\KBDINORI.DLL
- %WINDIR%\Win7\KBDINTEL.DLL
- %WINDIR%\Win7\KBDINTAM.DLL
- %WINDIR%\Win7\KBDINKAN.DLL
- %WINDIR%\Win7\KBDINHIN.DLL
- %WINDIR%\Win7\KBDINMAR.DLL
- %WINDIR%\Win7\KBDINMAL.DLL
- %WINDIR%\Win7\KBDGR1.DLL
- %WINDIR%\Win7\KBDGR.DLL
- %WINDIR%\Win7\KBDHAU.DLL
- %WINDIR%\Win7\KBDGRLND.DLL
- %WINDIR%\Win7\kbdgeoer.dll
- %WINDIR%\Win7\KBDGEO.DLL
- %WINDIR%\Win7\KBDGKL.DLL
- %WINDIR%\Win7\kbdgeoqw.dll
- %WINDIR%\Win7\KBDHE.DLL
- %WINDIR%\Win7\KBDHEPT.DLL
- %WINDIR%\Win7\KBDHELA3.DLL
- %WINDIR%\Win7\KBDHU1.DLL
- %WINDIR%\Win7\KBDHU.DLL
- %WINDIR%\Win7\KBDHE319.DLL
- %WINDIR%\Win7\KBDHE220.DLL
- %WINDIR%\Win7\KBDHELA2.DLL
- %WINDIR%\Win7\KBDHEB.DLL
- %WINDIR%\Win7\KBDINUK2.DLL
- %WINDIR%\Win7\KBDMON.DLL
- %WINDIR%\Win7\KBDMLT48.DLL
- %WINDIR%\Win7\KBDNE.DLL
- %WINDIR%\Win7\KBDMONMO.DLL
- %WINDIR%\Win7\KBDMACST.DLL
- %WINDIR%\Win7\KBDMAC.DLL
- %WINDIR%\Win7\KBDMLT47.DLL
- %WINDIR%\Win7\KBDMAORI.DLL
- %WINDIR%\Win7\kbdnec.dll
- %WINDIR%\Win7\KBDNO1.DLL
- %WINDIR%\Win7\KBDNO.DLL
- %WINDIR%\Win7\KBDPASH.DLL
- %WINDIR%\Win7\KBDNSO.DLL
- %WINDIR%\Win7\kbdnecat.dll
- %WINDIR%\Win7\kbdnec95.dll
- %WINDIR%\Win7\KBDNEPR.DLL
- %WINDIR%\Win7\kbdnecnt.dll
- %WINDIR%\Win7\KBDKAZ.DLL
- %WINDIR%\Win7\KBDJPN.DLL
- %WINDIR%\Win7\KBDKOR.DLL
- %WINDIR%\Win7\KBDKHMR.DLL
- %WINDIR%\Win7\KBDIT.DLL
- %WINDIR%\Win7\KBDIR.DLL
- %WINDIR%\Win7\KBDIULAT.DLL
- %WINDIR%\Win7\KBDIT142.DLL
- %WINDIR%\Win7\KBDKYR.DLL
- %WINDIR%\Win7\KBDLT2.DLL
- %WINDIR%\Win7\KBDLT1.DLL
- %WINDIR%\Win7\KBDLV1.DLL
- %WINDIR%\Win7\KBDLV.DLL
- %WINDIR%\Win7\KBDLAO.DLL
- %WINDIR%\Win7\KBDLA.DLL
- %WINDIR%\Win7\KBDLT.DLL
- %WINDIR%\Win7\kbdlk41a.dll
- %WINDIR%\Win7\KBDGAE.DLL
- %WINDIR%\Win7\iscsilog.dll
- %WINDIR%\Win7\iscsied.dll
- %WINDIR%\Win7\kanji_2.uce
- %WINDIR%\Win7\kanji_1.uce
- %WINDIR%\Win7\IPBusEnumProxy.dll
- %WINDIR%\Win7\iologmsg.dll
- %WINDIR%\Win7\irclass.dll
- %WINDIR%\Win7\iprtprio.dll
- %WINDIR%\Win7\kbd101.dll
- %WINDIR%\Win7\kbd106n.dll
- %WINDIR%\Win7\kbd106.dll
- %WINDIR%\Win7\KBDA2.DLL
- %WINDIR%\Win7\KBDA1.DLL
- %WINDIR%\Win7\kbd101b.dll
- %WINDIR%\Win7\kbd101a.dll
- %WINDIR%\Win7\kbd103.dll
- %WINDIR%\Win7\kbd101c.dll
- %WINDIR%\Win7\hnetmon.dll
- %WINDIR%\Win7\help.exe
- %WINDIR%\Win7\html\404.html
- %WINDIR%\Win7\HOSTNAME.EXE
- %WINDIR%\Win7\gpupdate.exe
- %WINDIR%\Win7\getuname.dll
- %WINDIR%\Win7\grpconv.exe
- %WINDIR%\Win7\grb.rs
- %WINDIR%\Win7\html\50x.html
- %WINDIR%\Win7\icsunattend.exe
- %WINDIR%\Win7\icrav03.rat
- %WINDIR%\Win7\InfDefaultInstall.exe
- %WINDIR%\Win7\ifsutilx.dll
- %WINDIR%\Win7\icardres.dll
- %WINDIR%\Win7\html\index.html
- %WINDIR%\Win7\IconCodecService.dll
- %WINDIR%\Win7\icmp.dll
- %WINDIR%\Win7\KBDA3.DLL
- %WINDIR%\Win7\KBDDA.DLL
- %WINDIR%\Win7\KBDCZ2.DLL
- %WINDIR%\Win7\KBDDIV2.DLL
- %WINDIR%\Win7\KBDDIV1.DLL
- %WINDIR%\Win7\KBDCR.DLL
- %WINDIR%\Win7\KBDCAN.DLL
- %WINDIR%\Win7\KBDCZ1.DLL
- %WINDIR%\Win7\KBDCZ.DLL
- %WINDIR%\Win7\KBDDV.DLL
- %WINDIR%\Win7\KBDFI1.DLL
- %WINDIR%\Win7\KBDFI.DLL
- %WINDIR%\Win7\KBDFR.DLL
- %WINDIR%\Win7\KBDFO.DLL
- %WINDIR%\Win7\KBDEST.DLL
- %WINDIR%\Win7\KBDES.DLL
- %WINDIR%\Win7\KBDFC.DLL
- %WINDIR%\Win7\KBDFA.DLL
- %WINDIR%\Win7\KBDAZEL.DLL
- %WINDIR%\Win7\KBDAZE.DLL
- %WINDIR%\Win7\KBDBE.DLL
- %WINDIR%\Win7\KBDBASH.DLL
- %WINDIR%\Win7\KBDARME.DLL
- %WINDIR%\Win7\KBDAL.DLL
- %WINDIR%\Win7\kbdax2.dll
- %WINDIR%\Win7\KBDARMW.DLL
- %WINDIR%\Win7\KBDBENE.DLL
- %WINDIR%\Win7\KBDBU.DLL
- %WINDIR%\Win7\KBDBR.DLL
- %WINDIR%\Win7\KBDCA.DLL
- %WINDIR%\Win7\KBDBULG.DLL
- %WINDIR%\Win7\KBDBGPH1.DLL
- %WINDIR%\Win7\KBDBGPH.DLL
- %WINDIR%\Win7\KBDBLR.DLL
- %WINDIR%\Win7\KBDBHC.DLL
Присваивает атрибут 'скрытый' для следующих файлов:
- %WINDIR%\Win7\api-ms-win-core-ums-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-core-threadpool-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-core-xstate-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-core-util-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-core-sysinfo-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-core-rtlsupport-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-core-profile-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-core-synch-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-core-string-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-security-base-l1-1-0.dll
- %WINDIR%\Win7\desktop.ini
- %WINDIR%\Win7\api-ms-win-service-winsvc-l1-1-0.dll
- %WINDIR%\explorer.lnk
- %WINDIR%\Win7\explorer.exe
- %WINDIR%\Win7\api-ms-win-service-management-l2-1-0.dll
- %WINDIR%\Win7\api-ms-win-security-sddl-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-security-lsalookup-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-service-management-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-service-core-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-core-file-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-core-fibers-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-core-heap-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-core-handle-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-core-errorhandling-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-core-datetime-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-core-console-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-core-delayload-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-core-debug-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-core-interlocked-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-core-namedpipe-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-core-misc-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-core-processthreads-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-core-processenvironment-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-core-memory-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-core-libraryloader-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-core-io-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-core-localregistry-l1-1-0.dll
- %WINDIR%\Win7\api-ms-win-core-localization-l1-1-0.dll
Удаляет следующие файлы:
- %TEMP%\$inst\2.tmp
- %TEMP%\$inst\temp_0.tmp
- <DRIVERS>\etc\hosts
Подменяет файл HOSTS.
Другое:
Ищет следующие окна:
- ClassName: 'Indicator' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
