Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'consoleguard' = ''
- '%TEMP%\is-55DTJ.tmp\setup.tmp' /SL5="$10106,252764,119296,%TEMP%\7zS1.tmp\setup.exe" /verysilent
- '%TEMP%\7zS1.tmp\setup.exe' /verysilent
- '%TEMP%\7zS1.tmp\BK9Cb.exe'
- '<SYSTEM32>\netsh.exe' firewall add allowedprogram program="%PROGRAM_FILES%\consoleguard\consoleguard.exe" name="consoleguard" ENABLE ALL
- %PROGRAM_FILES%\consoleguard\is-05AMO.tmp
- %PROGRAM_FILES%\consoleguard\is-IUPH2.tmp
- %PROGRAM_FILES%\consoleguard\unins000.dat
- %PROGRAM_FILES%\consoleguard\is-D511F.tmp
- %TEMP%\is-4SOBC.tmp\_isetup\_shfoldr.dll
- %TEMP%\7zS1.tmp\BK9Cb.exe
- %TEMP%\7zS1.tmp\proxyguard.ini
- %TEMP%\is-55DTJ.tmp\setup.tmp
- %TEMP%\7zS1.tmp\setup.exe
- %PROGRAM_FILES%\consoleguard\is-D511F.tmp в %PROGRAM_FILES%\consoleguard\proxyguard.ini
- %PROGRAM_FILES%\consoleguard\is-05AMO.tmp в %PROGRAM_FILES%\consoleguard\consoleguard.exe
- %PROGRAM_FILES%\consoleguard\is-IUPH2.tmp в %PROGRAM_FILES%\consoleguard\unins000.exe
- ClassName: 'Indicator' WindowName: '(null)'
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: 'EDIT' WindowName: '(null)'