Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] 'LoadAppInit_DLLs' = '00000001'
- [<HKLM>\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] 'AppInit_DLLs' = 'bcdui.dll'
- <SYSTEM32>\rundll32.exe "<SYSTEM32>\bcdui.dll",watch
- <SYSTEM32>\rundll32.exe "<SYSTEM32>\bcdui.dll",install
- %WINDIR%\Explorer.EXE
- chrome.exe
- iexplore.exe
- firefox.exe
- <SYSTEM32>\bcdui.dll
- DNS ASK www.google.com
- DNS ASK wi###pdater.com
- '<IP-адрес в локальной сети>':1037