Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] '{1D476073-5E7F-AD41-B897-60D4A63F43C6}' = '"%APPDATA%\Ydcoh\adqiul.exe"'
- [<HKLM>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] 'DisableNotifications' = '00000001'
- %APPDATA%\Ydcoh\adqiul.exe
- <Служебный элемент>
- %TEMP%\tmpf2ed74c7.bat
- <LS_APPDATA>\idubco.dut
- %APPDATA%\Ydcoh\adqiul.exe
- '66.##9.110.89':28898
- '69.#9.74.6':14775
- '71.##.150.224':20781
- '94.##.187.38':12457
- '61.##.134.47':13527
- '75.##.49.248':29863
- '71.#3.217.3':11403
- ClassName: 'Indicator' WindowName: ''