Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] '{1D476073-5E7F-AD41-B897-60D4A63F43C6}' = '"%APPDATA%\Igej\suurh.exe"'
- [<HKLM>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] 'DisableNotifications' = '00000001'
- '%APPDATA%\Igej\suurh.exe'
- <Служебный элемент>
- %TEMP%\tmp7bdbd8d3.bat
- <LS_APPDATA>\arunp.syg
- %APPDATA%\Igej\suurh.exe
- '12#.#69.82.185':28655
- '11#.#16.99.117':13205
- '18#.#54.180.90':10439
- '17#.#1.54.16':11601
- '83.##3.40.53':13387
- '19#.#51.134.184':22615
- '79.##.157.144':12827
- '17#.#3.238.72':22869
- ClassName: 'Indicator' WindowName: ''