Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'DLL Themes Detection Wired Builder' = 'C:\vsyehhbj\dcmrlkmapnst.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Controls Tools Resource] 'ImagePath' = 'C:\vsyehhbj\dcmrlkmapnst.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Controls Tools Resource] 'Start' = '00000002'
- 'C:\vsyehhbj\xhrrxkgfcid.exe' "c:\vsyehhbj\dcmrlkmapnst.exe"
- 'C:\vsyehhbj\dcmrlkmapnst.exe'
- 'C:\vsyehhbj\c5wc2nk3ojnehfbj.exe'
- C:\vsyehhbj\dcmrlkmapnst.exe
- C:\vsyehhbj\xhrrxkgfcid.exe
- C:\vsyehhbj\cecsxiry
- %WINDIR%\vsyehhbj\avdrrp
- C:\vsyehhbj\avdrrp
- C:\vsyehhbj\c5wc2nk3ojnehfbj.exe
- C:\vsyehhbj\xhrrxkgfcid.exe
- C:\vsyehhbj\dcmrlkmapnst.exe
- C:\vsyehhbj\c5wc2nk3ojnehfbj.exe
- %WINDIR%\vsyehhbj\avdrrp
- %WINDIR%\vsyehhbj\avdrrp
- '88.#48.36.4':25752
- '71.##2.212.226':26466
- '2.##.167.151':22437
- '10#.#46.77.146':33927
- '67.##.64.252':27314
- '21#.#19.80.21':36542
- '84.##2.194.230':27426
- '18#.#39.124.68':37599
- ClassName: 'Shell_TrayWnd' WindowName: ''