Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] '97d070e5137dc1e3e46ef68b83078942' = '"%TEMP%\updateGooglehandler.exe" ..'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] '97d070e5137dc1e3e46ef68b83078942' = '"%TEMP%\updateGooglehandler.exe" ..'
- %HOMEPATH%\Start Menu\Programs\Startup\97d070e5137dc1e3e46ef68b83078942.exe
- [<HKLM>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] '%TEMP%\updateGooglehandler.exe' = '%TEMP%\updateGooglehandler.exe:*:Enabled:updateGooglehandler.exe'
- '%TEMP%\updateGooglehandler.exe'
- '<SYSTEM32>\netsh.exe' firewall add allowedprogram "%TEMP%\updateGooglehandler.exe" "updateGooglehandler.exe" ENABLE
- %TEMP%\updateGooglehandler.exe
- 'sy######plorer.serveftp.com':6118
- DNS ASK sy######plorer.serveftp.com
- ClassName: 'Indicator' WindowName: ''