Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] '{1D476073-5E7F-AD41-B897-60D4A63F43C6}' = '"%APPDATA%\Isno\ahyv.exe"'
- [<HKLM>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] 'DisableNotifications' = '00000001'
- '%APPDATA%\Isno\ahyv.exe'
- <SYSTEM32>\cmd.exe
- <Служебный элемент>
- %TEMP%\tmp79bea1af.bat
- <LS_APPDATA>\izaj.eqo
- %APPDATA%\Isno\ahyv.exe
- '96.#7.81.4':26862
- '18#.#41.97.79':28930
- '86.##4.109.194':24730
- '11#.#73.193.205':13265
- '14.##.66.222':29408
- '79.##1.203.132':13603
- '12#.#37.239.143':19477
- '2.###.138.10':18881
- ClassName: 'Indicator' WindowName: ''