Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] '{1D476073-5E7F-AD41-B897-60D4A63F43C6}' = '"%APPDATA%\Uqny\zeojys.exe"'
- [<HKLM>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] 'DisableNotifications' = '00000001'
- '%APPDATA%\Uqny\zeojys.exe'
- <SYSTEM32>\cscript.exe
- %TEMP%\tmpf72bc086.bat
- <LS_APPDATA>\gyidwe.ofa
- %APPDATA%\Uqny\zeojys.exe
- '75.#.222.103':11577
- '18#.#9.41.30':18356
- '11#.#4.79.38':11609
- '21#.#2.52.37':26461
- '19#.#69.125.228':29902
- '19#.#1.75.132':21391
- '12#.#64.109.238':12333
- '11#.#18.103.46':14395
- '37.#4.156.7':27764
- '94.##0.224.115':27794
- '18#.#53.30.100':18391
- '79.##7.112.8':11897
- '11#.#73.213.139':13527
- '95.##.17.124':26667
- ClassName: 'Indicator' WindowName: ''