Техническая информация
- %TEMP%\ign3938.tmp\lmiguardiandll.dll
- %TEMP%\ign3938.tmp\lmiguardianevt.dll
- %TEMP%\ign3938.tmp\lmiguardiansvc.exe
- %TEMP%\ign3938.tmp\lmiignition.exe
- %TEMP%\ign3938.tmp\lmiproxyhelper.exe
- %TEMP%\ign3938.tmp\ractrl.dll
- %TEMP%\ign3938.tmp\ractrlkeyhook.dll
- %TEMP%\ign3938.tmp\deployinfo.txt
- %TEMP%\ign3938.tmp.cmd
- nul
- %LOCALAPPDATA%\logmeinignition\logmeinignition.log
- %TEMP%\ign3938.tmp.cmd
- %TEMP%\ign3938.tmp\deployinfo.txt
- %TEMP%\ign3938.tmp\lmiproxyhelper.exe
- %TEMP%\ign3938.tmp\ractrl.dll
- %TEMP%\ign3938.tmp\ractrlkeyhook.dll
- %TEMP%\ign3938.tmp\lmiguardiansvc.exe
- %TEMP%\ign3938.tmp\lmiguardiandll.dll
- %TEMP%\ign3938.tmp\lmiguardianevt.dll
- %TEMP%\ign3938.tmp\lmiignition.exe
- 'ma#############s-office-tdolkggaeh.app01-23.logmein.com':443
- DNS ASK ma#############s-office-tdolkggaeh.app01-23.logmein.com
- '%TEMP%\ign3938.tmp\lmiignition.exe' -install
- '%TEMP%\ign3938.tmp\lmiguardiansvc.exe' /escort 2168
- '%WINDIR%\syswow64\cmd.exe' /c ""%TEMP%\Ign3938.tmp.cmd" "' (со скрытым окном)
- '%WINDIR%\syswow64\cmd.exe' /c ""%TEMP%\IgnEBB5.tmp.cmd" "' (со скрытым окном)
- '%WINDIR%\syswow64\cmd.exe' /c ""%TEMP%\IgnEC90.tmp.cmd" "' (со скрытым окном)
- '%WINDIR%\syswow64\cmd.exe' /c ""%TEMP%\Ign3938.tmp.cmd" "
- '%WINDIR%\syswow64\ping.exe' -n 2 127.0.0.1
- '%WINDIR%\syswow64\cmd.exe' /c ""%TEMP%\IgnEBB5.tmp.cmd" "
- '%WINDIR%\syswow64\cmd.exe' /c ""%TEMP%\IgnEC90.tmp.cmd" "
- '%WINDIR%\syswow64\ping.exe' -n 5 127.0.0.1