Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Fikua' = '"%APPDATA%\Xofeo\fikua.exe"'
- [<HKLM>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] 'DisableNotifications' = '00000001'
- '%APPDATA%\Xofeo\fikua.exe'
- <Служебный элемент>
- %TEMP%\tmpc469c6ad.bat
- <LS_APPDATA>\eleq.atz
- %APPDATA%\Xofeo\fikua.exe
- '81.##3.189.232':10880
- '19#.#2.161.35':23153
- '78.##9.187.6':14384
- '17#.#5.134.131':14623
- '71.##3.224.27':12893
- '14#.#36.161.103':14675
- '19#.#37.43.166':20914
- '17#.#3.238.72':22869
- '83.##.214.39':13647
- '19#.#4.127.98':25549
- '18#.#24.226.182':15726
- '41.##3.148.193':16876
- '69.##.132.197':20764
- '18#.#41.97.79':16114
- '64.##0.155.194':19894
- '79.##.186.127':12827
- ClassName: 'Indicator' WindowName: ''