Техническая информация
- '%TEMP%\159.exe'
- '%APPDATA%\Microsoft\svchost.exe'
- '%TEMP%\974.exe'
- '%TEMP%\100.exe'
- [<HKCU>\Software\Paltalk]
- %APPDATA%\Microsoft\svchost.exe
- %TEMP%\melt.txt
- %TEMP%\159.exe
- %TEMP%\974.exe
- %TEMP%\100.exe
- %TEMP%\159.exe
- 'ba###.no-ip.biz':821
- DNS ASK ba###.no-ip.biz
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'