Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Coordinator Provider Smart Reports' = 'C:\srurdbu\iobprykc.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Port Firewall Installer Offline] 'ImagePath' = 'C:\srurdbu\iobprykc.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Port Firewall Installer Offline] 'Start' = '00000002'
- 'C:\srurdbu\uxyqlbsvmlq.exe' "c:\srurdbu\iobprykc.exe"
- 'C:\srurdbu\iobprykc.exe'
- 'C:\srurdbu\dxpdc2u2wkspainzjqmkn.exe'
- C:\srurdbu\iobprykc.exe
- C:\srurdbu\uxyqlbsvmlq.exe
- C:\srurdbu\shwglew
- %WINDIR%\srurdbu\vfchhqvbf
- C:\srurdbu\vfchhqvbf
- C:\srurdbu\dxpdc2u2wkspainzjqmkn.exe
- C:\srurdbu\uxyqlbsvmlq.exe
- C:\srurdbu\iobprykc.exe
- C:\srurdbu\dxpdc2u2wkspainzjqmkn.exe
- %WINDIR%\srurdbu\vfchhqvbf
- %WINDIR%\srurdbu\vfchhqvbf
- '85.##.122.169':40540
- '17#.#40.117.149':27603
- '20#.#7.225.58':33073
- '22#.#1.110.45':48008
- '79.##7.196.121':45688
- '84.##2.194.230':27426
- '79.##5.10.236':21201
- '19#.74.51.3':32904
- ClassName: 'Shell_TrayWnd' WindowName: ''