Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] '2wY4BMzqSVQCr0HQEx' = '%APPDATA%\D6pL7UDIKIRN0l8M\1rGw8cpILlxX.exe'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] '2wY4BMzqSVQCr0HQ' = '%APPDATA%\D6pL7UDIKIRN0l8M\5CshMSg0jfhc.exe'
- '%TEMP%\help.exe'
- '<SYSTEM32>\netsh.exe' firewall add allowedprogram "%TEMP%\help.exe" "help.exe" ENABLE
- '%TEMP%\help.exe'
- %APPDATA%\D6pL7UDIKIRN0l8M\1rGw8cpILlxX.exe
- %TEMP%\help.exe
- %APPDATA%\D6pL7UDIKIRN0l8M\5CshMSg0jfhc.exe
- %APPDATA%\D6pL7UDIKIRN0l8M\1rGw8cpILlxX.exe
- %APPDATA%\D6pL7UDIKIRN0l8M\5CshMSg0jfhc.exe