Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Access Offline Counter Receiver Microsoft' = 'C:\sruelrcte\krvpailiofkh.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Telephony Helper Receiver Card] 'ImagePath' = 'C:\sruelrcte\krvpailiofkh.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Telephony Helper Receiver Card] 'Start' = '00000002'
- 'C:\sruelrcte\tnvftuqcoqb.exe' "c:\sruelrcte\krvpailiofkh.exe"
- 'C:\sruelrcte\krvpailiofkh.exe'
- 'C:\sruelrcte\cc2g30uayuadkwrmwur.exe'
- C:\sruelrcte\krvpailiofkh.exe
- C:\sruelrcte\tnvftuqcoqb.exe
- C:\sruelrcte\bfajulfil
- %WINDIR%\sruelrcte\becohf
- C:\sruelrcte\becohf
- C:\sruelrcte\cc2g30uayuadkwrmwur.exe
- C:\sruelrcte\tnvftuqcoqb.exe
- C:\sruelrcte\krvpailiofkh.exe
- C:\sruelrcte\cc2g30uayuadkwrmwur.exe
- %WINDIR%\sruelrcte\becohf
- %WINDIR%\sruelrcte\becohf
- '19#.#0.96.220':41884
- '95.##7.243.188':49038
- '15#.#82.245.137':33982
- '19#.#45.26.50':31421
- '82.##7.164.91':40801
- '2.##.19.50':35833
- '18#.#55.19.91':30767
- '91.##.35.122':26126
- ClassName: 'Shell_TrayWnd' WindowName: ''