Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] '{1D476073-5E7F-AD41-B897-60D4A63F43C6}' = '"%APPDATA%\Ewocha\zune.exe"'
- [<HKLM>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] 'DisableNotifications' = '00000001'
- '<SYSTEM32>\cmd.exe' /c "%TEMP%\tmp717f8e37.bat"
- '%APPDATA%\Ewocha\zune.exe'
- <SYSTEM32>\cscript.exe
- [<HKCU>\Software\Microsoft\Windows Live Mail]
- [<HKCU>\Software\Microsoft\Internet Account Manager\Accounts]
- [<HKCU>\Software\Microsoft\Internet Account Manager]
- %TEMP%\tmp717f8e37.bat
- <LS_APPDATA>\wugeo.ibj
- %APPDATA%\Ewocha\zune.exe
- '69.#9.74.6':14775
- '71.#3.217.3':11403
- '75.##.49.248':29863
- '10#.#11.64.46':23323
- '24.##6.54.116':10972
- '19#.#98.30.168':28965
- '64.##9.121.189':13503
- '80.##2.59.142':20199
- '18#.#42.242.78':26507
- '37.##2.91.240':14068
- '1.###.47.244':16276
- '91.##.146.167':12713
- '94.##.225.206':11333
- '24.##0.165.58':21251
- '99.##6.113.129':29551
- '66.##9.110.89':28898