Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Syqy' = '"%APPDATA%\Nyib\syqy.exe"'
- [<HKLM>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] 'DisableNotifications' = '00000001'
- '%APPDATA%\Nyib\syqy.exe'
- <Служебный элемент>
- %TEMP%\tmp502f87e8.bat
- <LS_APPDATA>\ifepus.dem
- %APPDATA%\Nyib\syqy.exe
- '75.##.131.154':20696
- '68.##6.125.196':1422
- '95.##.19.253':15758
- '78.##6.89.166':21779
- '19#.#42.248.16':25364
- '12#.#79.187.97':15209
- '12#.#60.9.209':15263
- ClassName: 'Indicator' WindowName: ''