Technical Information
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'ComputerInfo' = 'C:\SMPK_PAC\Computer_info.exe'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'DelTemp' = 'C:\SMPK_PAC\deltemp.bat'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'SMPK_Application' = 'C:\SMPK_PAC\SMPK_MenuP.exe'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'WinVNC64' = 'C:\SMPK_PAC\TightVNCServerPortable\App\tightvnc-64bit\tvnserver.exe'
- '%WINDIR%\syswow64\netsh.exe' firewall add allowedprogram C:\SMPK_PAC\Computer_info.exe "ComputerInfo" ENABLE
- unc\10.0.39.72\pipe\wkssvc
- '<LOCALNET>.10.3':80
- '<LOCALNET>.39.72':445
- '<LOCALNET>.39.72':445
- '<LOCALNET>.39.72':49173