Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] '{1D476073-5E7F-AD41-B897-60D4A63F43C6}' = '"%APPDATA%\Omih\kaly.exe"'
- [<HKLM>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] 'DisableNotifications' = '00000001'
- %APPDATA%\Omih\kaly.exe
- <Служебный элемент>
- %TEMP%\tmp21b4231a.bat
- <LS_APPDATA>\lorac.zoy
- %APPDATA%\Omih\kaly.exe
- 'yt#######pjovxgtkrsjvscijv.org':80
- 'www.bing.com':80
- '74.##5.232.51':80
- yt#######pjovxgtkrsjvscijv.org/
- www.bing.com/
- 74.##5.232.51/
- DNS ASK www.bing.com
- DNS ASK www.google.com
- DNS ASK yt#######pjovxgtkrsjvscijv.org
- '19#.#39.249.124':28980
- '90.##7.81.15':10004
- '99.##9.95.36':25614
- '17#.#2.240.159':24509
- '76.##6.150.193':23877
- '11#.#71.74.52':18404
- '95.##8.13.250':17148
- '68.##2.252.216':18464
- ClassName: 'Indicator' WindowName: ''