Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Profile Peer Logon Disk Storage' = 'C:\qellyjharqww\cszybgxhokrt.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Debugger Microsoft Distributed SNMP] 'ImagePath' = 'C:\qellyjharqww\cszybgxhokrt.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Debugger Microsoft Distributed SNMP] 'Start' = '00000002'
- 'C:\qellyjharqww\pbvdmjqpy.exe' "c:\qellyjharqww\cszybgxhokrt.exe"
- 'C:\qellyjharqww\cszybgxhokrt.exe'
- 'C:\qellyjharqww\fk2gadnynpkecxlo.exe'
- C:\qellyjharqww\cszybgxhokrt.exe
- C:\qellyjharqww\pbvdmjqpy.exe
- C:\qellyjharqww\sqrrazvev4pg
- %WINDIR%\qellyjharqww\anppbnesjf
- C:\qellyjharqww\anppbnesjf
- C:\qellyjharqww\fk2gadnynpkecxlo.exe
- C:\qellyjharqww\pbvdmjqpy.exe
- C:\qellyjharqww\cszybgxhokrt.exe
- C:\qellyjharqww\fk2gadnynpkecxlo.exe
- %WINDIR%\qellyjharqww\anppbnesjf
- %WINDIR%\qellyjharqww\anppbnesjf
- '93.##7.67.155':25640
- '18#.#39.143.239':37599
- '77.##7.13.68':30018
- '18#.#0.223.209':25741
- '95.##.58.101':23245
- '78.#7.87.58':21017
- '74.#5.64.25':22739
- '91.##.35.122':26126
- ClassName: 'Shell_TrayWnd' WindowName: ''