Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] '{1D476073-5E7F-AD41-B897-60D4A63F43C6}' = '"%APPDATA%\Epinza\yvyfp.exe"'
- [<HKLM>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] 'DisableNotifications' = '00000001'
- '%APPDATA%\Epinza\yvyfp.exe'
- <Служебный элемент>
- %TEMP%\tmp60760d43.bat
- <LS_APPDATA>\atjyp.ymc
- %APPDATA%\Epinza\yvyfp.exe
- '18#.#16.56.215':15257
- '2.##.31.215':19777
- '19#.#2.161.35':23153
- '21#.#9.138.218':26399
- '79.##6.193.99':27749
- '99.##.188.39':17053
- '76.##5.44.216':13467
- '20#.#.225.23':19674
- ClassName: 'Indicator' WindowName: ''