Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] '9b238b26e675de6e6c45ab2a188b552b' = '"%APPDATA%\UFX.exe" ..'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] '9b238b26e675de6e6c45ab2a188b552b' = '"%APPDATA%\UFX.exe" ..'
- %HOMEPATH%\Start Menu\Programs\Startup\9b238b26e675de6e6c45ab2a188b552b.exe
- <Имя диска съемного носителя>:\! SYStem.SCR
- [<HKLM>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] '%APPDATA%\UFX.exe' = '%APPDATA%\UFX.exe:*:Enabled:UFX.exe'
- %APPDATA%\UFX.exe
- <SYSTEM32>\netsh.exe firewall add allowedprogram "%APPDATA%\UFX.exe" "UFX.exe" ENABLE
- C:\! SYStem.SCR
- %APPDATA%\UFX.exe
- 'er####x.no-ip.info':1177
- DNS ASK er####x.no-ip.info
- ClassName: 'Indicator' WindowName: ''