Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Peer Print Instrumentation Counter IKE' = 'C:\elvmkrjouv\sidhlbkg.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Publication Alerts Presentation] 'ImagePath' = 'C:\elvmkrjouv\sidhlbkg.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Publication Alerts Presentation] 'Start' = '00000002'
- 'C:\elvmkrjouv\rrpolvxwi.exe' "c:\elvmkrjouv\sidhlbkg.exe"
- 'C:\elvmkrjouv\sidhlbkg.exe'
- 'C:\elvmkrjouv\wo0rl4pzcmwijvgpmpog.exe'
- C:\elvmkrjouv\sidhlbkg.exe
- C:\elvmkrjouv\rrpolvxwi.exe
- C:\elvmkrjouv\igklmbsa
- %WINDIR%\elvmkrjouv\fq1qcrcqof
- C:\elvmkrjouv\fq1qcrcqof
- C:\elvmkrjouv\wo0rl4pzcmwijvgpmpog.exe
- C:\elvmkrjouv\rrpolvxwi.exe
- C:\elvmkrjouv\sidhlbkg.exe
- C:\elvmkrjouv\wo0rl4pzcmwijvgpmpog.exe
- %WINDIR%\elvmkrjouv\fq1qcrcqof
- %WINDIR%\elvmkrjouv\fq1qcrcqof
- '12#.#60.112.138':27440
- '86.##5.219.12':21375
- '18#.#55.161.27':20052
- '12#.#60.123.173':36805
- '72.#9.59.91':23362
- '19#.74.51.3':32904
- '19#.#54.74.242':31770
- '77.##.186.45':43519
- ClassName: 'Shell_TrayWnd' WindowName: ''