Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'bxproxy' = '%TEMP%\mssvmdll.dll'
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'new.net startup' = '%HOMEPATH%\svhc32.dll'
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'bxproxy' = '%HOMEPATH%\krnl32.dll'
- %TEMP%\stubext.dll
- %HOMEPATH%\mstsk32.dll
- %TEMP%\systerm.exe
- %HOMEPATH%\krnl32.dll
- %HOMEPATH%\svhc32.dll
- %TEMP%\mssvmdll.dll
- ClassName: 'Shell_TrayWnd' WindowName: ''