Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\Wswiem immgmiie] 'Start' = '00000002'
- '%PROGRAM_FILES%\Yskeaos.exe'
- '<SYSTEM32>\wscript.exe' "C:\8470.vbs"
- C:\8470.vbs
- %PROGRAM_FILES%\Yskeaos.exe
- C:\8470.vbs
- 'z5####9011.3322.org':9797
- DNS ASK z5####9011.3322.org