Техническая информация
- [<HKLM>\System\CurrentControlSet\Services\iowaloada] 'Start' = '00000002'
- [<HKLM>\System\CurrentControlSet\Services\iowaloada] 'ImagePath' = '"%WINDIR%\SysWOW64\iowaloada.exe"'
- 'iowaloada' "%WINDIR%\SysWOW64\iowaloada.exe"
- 'iowaloada' %WINDIR%\SysWOW64\iowaloada.exe
- %WINDIR%\syswow64\iowaloada.exe
- из <Полный путь к файлу> в %WINDIR%\syswow64\iowaloada.exe
- '19#.#47.53.140':8090
- '18#.#8.141.218':80
- '20#.#32.185.66':80
- '69.##3.214.97':8080