Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\UserLog] 'ImagePath' = '%ProgramFiles%\Winconfig\imgsrc.ru_385945265191730594269.jpg.498745664557.exe /service'
- [<HKLM>\SYSTEM\ControlSet001\Services\UserLog] 'Start' = '00000002'
- [<HKLM>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] '%ProgramFiles%\Winconfig\imgsrc.ru_385945265191730594269.jpg.498745664...
- '%TEMP%\is-O69DK.tmp\EXE_to_APK_Converter-Tool.tmp' /SL5="$40092,249524,56832,%TEMP%\EXE_to_APK_Converter-Tool.exe" /VERYSILENT
- '%TEMP%\EXE_to_APK_Converter_Tool.exe'
- '%TEMP%\EXE_to_APK_Converter-Tool.exe' /VERYSILENT
- '<SYSTEM32>\netsh.exe' firewall add allowedprogram "%ProgramFiles%\Winconfig\imgsrc.ru_385945265191730594269.jpg.498745664557.exe" "UserLog" ENABLE ALL
- '<SYSTEM32>\sc.exe' create UserLog start= auto DisplayName= UserLog binPath= "%ProgramFiles%\Winconfig\imgsrc.ru_385945265191730594269.jpg.498745664557.exe /service"
- %ProgramFiles%\Winconfig\is-E6IUU.tmp
- %TEMP%\EXE_to_APK_Converter_Tool.exe
- %TEMP%\EXE_to_APK_Converter-Tool.exe
- %TEMP%\is-O69DK.tmp\EXE_to_APK_Converter-Tool.tmp
- %TEMP%\is-EIRRE.tmp\_isetup\_shfoldr.dll
- %ProgramFiles%\Winconfig\is-E6IUU.tmp в %ProgramFiles%\Winconfig\imgsrc.ru_385945265191730594269.jpg.498745664557.exe
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'EDIT' WindowName: ''