Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] 'onfwbsak' = '{B4074023-9843-4FF1-AE84-8160E3C14766}'
- '%TEMP%\ac8zt2\efts.exe' %WINDIR%\onfwbsak.dll onfwbsak
- '<SYSTEM32>\regsvr32.exe' /s %WINDIR%\dfmlxbpkbdo.dll
- %WINDIR%\onfwbsak.dll
- %WINDIR%\dfmlxbpkbdo.dll
- %TEMP%\ac8zt2\dfmlxbpkbdo.dll
- %WINDIR%\rwlfsdmk.dll
- %WINDIR%\efts.exe
- %WINDIR%\peltodgx.dll
- %WINDIR%\fbxrqtwn.exe
- %TEMP%\ac8zt2\install.bat
- %TEMP%\ac8zt2\rwlfsdmk.dll
- %TEMP%\nsz3.tmp\blowfish_d.dll
- %TEMP%\nst2.tmp
- %TEMP%\ac8zt2\fbxrqtwn.exe
- %TEMP%\ac8zt2\efts.exe
- %TEMP%\ac8zt2\onfwbsak.dll
- %TEMP%\ac8zt2\peltodgx.dll