Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] '{1D476073-5E7F-AD41-B897-60D4A63F43C6}' = '"%APPDATA%\Izmoc\beevi.exe"'
- [<HKLM>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] 'DisableNotifications' = '00000001'
- %APPDATA%\Izmoc\beevi.exe
- <Служебный элемент>
- %TEMP%\tmp7bdde41f.bat
- <LS_APPDATA>\ulufn.emi
- %APPDATA%\Izmoc\beevi.exe
- '19#.#69.125.228':29902
- '76.#.130.26':11749
- '31.##2.58.166':13875
- '19#.#90.236.116':16437
- '18#.#9.160.244':29849
- '12#.#68.176.98':20197
- '98.##3.225.70':19739
- '10#.#.129.105':20662
- '89.##2.242.173':19896
- '99.##.50.168':18692
- '76.##7.215.185':25494
- '11#.#07.250.61':10297
- '50.##4.189.175':11507
- '75.##.207.54':28435
- '10#.#17.233.48':16503
- '10#.#3.0.251':28469
- '76.##3.247.173':15150
- '10#.#98.141.10':27666
- '75.##.136.151':25600
- '99.##.193.28':17560
- ClassName: 'Indicator' WindowName: ''