Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Port Registrar SNMP Net.Tcp Disk' = 'C:\pvbboefvqma\cjotklicuauv.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Manager Superfetch Link Print Provider] 'ImagePath' = 'C:\pvbboefvqma\cjotklicuauv.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Manager Superfetch Link Print Provider] 'Start' = '00000002'
- 'C:\pvbboefvqma\zjticvgphi.exe' "c:\pvbboefvqma\cjotklicuauv.exe"
- 'C:\pvbboefvqma\cjotklicuauv.exe'
- 'C:\pvbboefvqma\irust2hyaa3chwl3uevms.exe'
- C:\pvbboefvqma\cjotklicuauv.exe
- C:\pvbboefvqma\zjticvgphi.exe
- C:\pvbboefvqma\rtcccaryvzfr
- %WINDIR%\pvbboefvqma\s3hgzcuaf6ez
- C:\pvbboefvqma\s3hgzcuaf6ez
- C:\pvbboefvqma\irust2hyaa3chwl3uevms.exe
- C:\pvbboefvqma\zjticvgphi.exe
- C:\pvbboefvqma\cjotklicuauv.exe
- C:\pvbboefvqma\irust2hyaa3chwl3uevms.exe
- %WINDIR%\pvbboefvqma\s3hgzcuaf6ez
- %WINDIR%\pvbboefvqma\s3hgzcuaf6ez
- '21#.#19.80.21':36542
- '18#.#39.124.68':37599
- '72.##1.47.203':22399
- '5.#.166.192':41199
- '20#.#71.22.221':32994
- '84.##8.130.85':27132
- '18#.#72.215.47':51612
- '10#.#2.195.20':39160
- ClassName: 'Shell_TrayWnd' WindowName: ''