Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'WindowsUpdateService' = 'rundll32.exe "%ALLUSERSPROFILE%\Application Data\WindowsUpdateService.dll",DllRegisterServer'
- <SYSTEM32>\rundll32.exe "<LS_APPDATA>\WindowsBackup.dll",DllRegisterServer
- <SYSTEM32>\rundll32.exe "%ALLUSERSPROFILE%\Application Data\WindowsUpdateService.dll",DllRegisterServer
- <SYSTEM32>\rundll32.exe "%TEMP%\7D6.tmp",DllRegisterServer
- opera.exe
- iexplore.exe
- firefox.exe
- chrome.exe
- %APPDATA%\Mozilla\Firefox\Profiles\przhlnon.default\extensions\{ba009310-60ab-4410-bfd7-13ba64ef49f5}\defaults\preferences\xulcache.js
- %APPDATA%\Mozilla\Firefox\Profiles\przhlnon.default\extensions\{ba009310-60ab-4410-bfd7-13ba64ef49f5}\chrome\xulcache.jar
- %APPDATA%\Mozilla\Firefox\Profiles\przhlnon.default\extensions\{ba009310-60ab-4410-bfd7-13ba64ef49f5}\chrome.manifest
- %APPDATA%\Mozilla\Firefox\Profiles\przhlnon.default\extensions\{ba009310-60ab-4410-bfd7-13ba64ef49f5}\install.rdf
- %TEMP%\7D6.tmp
- %ALLUSERSPROFILE%\Application Data\WindowsUpdateService.dll
- <LS_APPDATA>\WindowsBackup.dll
- %TEMP%\7D6.tmp
- ClassName: 'Indicator' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''