Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] '{1D476073-5E7F-AD41-B897-60D4A63F43C6}' = '"%APPDATA%\Reyz\ohvy.exe"'
- [<HKLM>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] 'DisableNotifications' = '00000001'
- '%APPDATA%\Reyz\ohvy.exe'
- <Служебный элемент>
- %TEMP%\tmp9237b907.bat
- <LS_APPDATA>\erorsu.igy
- %APPDATA%\Reyz\ohvy.exe
- '85.##.68.163':27228
- '21#.#30.94.48':27964
- '94.##.69.140':13682
- '18#.#23.141.58':25427
- '87.#.199.112':13362
- '94.#6.1.164':23064
- '20#.#40.1.39':15649
- '17#.#1.22.18':17334
- ClassName: 'Indicator' WindowName: ''