Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] '{1D476073-5E7F-AD41-B897-60D4A63F43C6}' = '"%APPDATA%\Yssyes\avyrcy.exe"'
- [<HKLM>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] 'DisableNotifications' = '00000001'
- %APPDATA%\Yssyes\avyrcy.exe
- <Служебный элемент>
- %TEMP%\tmpa530b845.bat
- <LS_APPDATA>\utrii.wea
- %APPDATA%\Yssyes\avyrcy.exe
- '2.##0.1.46':16835
- '19#.#4.127.98':25549
- '95.##.237.195':22826
- '20#.#70.169.29':19828
- '71.##6.48.91':22174
- '19#.#7.222.42':24309
- '67.##2.102.80':27958
- '19#.#69.125.228':29902
- '65.##.153.238':11416
- ClassName: 'Indicator' WindowName: ''