Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Virtual Client Workstation Grouping Solutions' = 'C:\mdfrhupvi\perbnzcnjkyh.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Configuration Connect Biometric] 'ImagePath' = 'C:\mdfrhupvi\perbnzcnjkyh.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Configuration Connect Biometric] 'Start' = '00000002'
- 'C:\mdfrhupvi\aocezjhrju.exe' "c:\mdfrhupvi\perbnzcnjkyh.exe"
- 'C:\mdfrhupvi\perbnzcnjkyh.exe'
- 'C:\mdfrhupvi\uw2d48rhjnnucukjzd.exe'
- C:\mdfrhupvi\perbnzcnjkyh.exe
- C:\mdfrhupvi\aocezjhrju.exe
- C:\mdfrhupvi\xggyiucyxxth
- %WINDIR%\mdfrhupvi\d04soudou3x
- C:\mdfrhupvi\d04soudou3x
- C:\mdfrhupvi\uw2d48rhjnnucukjzd.exe
- C:\mdfrhupvi\aocezjhrju.exe
- C:\mdfrhupvi\perbnzcnjkyh.exe
- C:\mdfrhupvi\uw2d48rhjnnucukjzd.exe
- %WINDIR%\mdfrhupvi\d04soudou3x
- %WINDIR%\mdfrhupvi\d04soudou3x
- '17#.#40.117.149':27603
- '82.##7.164.91':40801
- '18#.#0.220.30':25741
- '79.##1.239.74':42581
- '20#.#7.225.58':33073
- '72.##1.47.203':22399
- '86.##5.19.130':27743
- '19#.#47.86.10':25432
- ClassName: 'OleMainThreadWndClass' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''