Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Update Authentication Group Ordering Level' = 'C:\kmolwnnvsl\yejkalbpidv.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Player Error Upgrade Ordering] 'ImagePath' = 'C:\kmolwnnvsl\yejkalbpidv.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Player Error Upgrade Ordering] 'Start' = '00000002'
- 'C:\kmolwnnvsl\btzulklrav.exe' "c:\kmolwnnvsl\yejkalbpidv.exe"
- 'C:\kmolwnnvsl\yejkalbpidv.exe'
- 'C:\kmolwnnvsl\guj2f7bk7zbaab7oti.exe'
- C:\kmolwnnvsl\yejkalbpidv.exe
- C:\kmolwnnvsl\btzulklrav.exe
- C:\kmolwnnvsl\rnzputl
- %WINDIR%\kmolwnnvsl\fwftkadfucws
- C:\kmolwnnvsl\fwftkadfucws
- C:\kmolwnnvsl\guj2f7bk7zbaab7oti.exe
- C:\kmolwnnvsl\btzulklrav.exe
- C:\kmolwnnvsl\yejkalbpidv.exe
- C:\kmolwnnvsl\guj2f7bk7zbaab7oti.exe
- %WINDIR%\kmolwnnvsl\fwftkadfucws
- %WINDIR%\kmolwnnvsl\fwftkadfucws
- '95.##8.241.220':49038
- '21#.#65.0.136':35711
- '2.##.19.50':35833
- '62.##1.108.194':20068
- '98.##.223.221':20922
- '10#.#46.77.146':33927
- '86.##5.10.227':45279
- '95.##.58.101':23245
- '78.##5.171.93':23699
- '41.##2.44.224':45860
- ClassName: 'Shell_TrayWnd' WindowName: ''