Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'System' = '%CommonProgramFiles%\System\Updaterun.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Hardware] 'Start' = '00000002'
- [<HKLM>\SYSTEM\ControlSet001\Services\BKMARKS] 'Start' = '00000002'
- '<SYSTEM32>\rundll2kxp.exe' <SYSTEM32>\WBEM\OZNBT.DLL,Export 1087
- '<SYSTEM32>\rundll2kxp.exe' "<SYSTEM32>\wbem\oznbt.dll",Export @start
- '<SYSTEM32>\rundll2kxp.exe' "<SYSTEM32>\wbem\oznbt.dll",Export @install
- '<SYSTEM32>\rundll32.exe' "<SYSTEM32>\thlge.dll",ExportFunc 1001
- <SYSTEM32>\thlge.dll
- <SYSTEM32>\advport.dll
- %HOMEPATH%\Favorites\¶аМШИнјюХѕ-Чо°ІИ«·ЕРДµДИнјюХѕ.url
- <SYSTEM32>\Score.txt
- <SYSTEM32>\wbem\oznbt.dll
- %CommonProgramFiles%\System\Updaterun.exe
- %ALLUSERSPROFILE%\Desktop\Internet Explorer.lnk
- <SYSTEM32>\wbem\ocmor.dll
- <SYSTEM32>\rundll2kxp.exe