Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce] 'wextract_cleanup0' = 'rundll32.exe <SYSTEM32>\advpack.dll,DelNodeRunDLL32 "%TEMP%\IXP000.TMP\"'
- '%TEMP%\IXP000.TMP\iODD-fw-updater-03.exe'
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- %TEMP%\IXP000.TMP\iODD-fw-updater-03.ini
- %TEMP%\IXP000.TMP\iODD-fw-updater-03.exe
- %TEMP%\IXP000.TMP\result\20150205-062008.csv
- %TEMP%\IXP000.TMP\iodd2541_micom_1-51(NTFS).mic
- %TEMP%\IXP000.TMP\config-iodd2541-02.ini
- %TEMP%\IXP000.TMP\iodd2541_firmware_1-51(NTFS).bin
- %TEMP%\IXP000.TMP\fw-integrity.dll
- %TEMP%\IXP000.TMP\font6_ww_01.fon
- <SYSTEM32>\PerfStringBackup.TMP
- <SYSTEM32>\wbem\Performance\WmiApRpl.ini
- ClassName: 'Firmware_Writer_Class' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''