Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Agent RPC Acquisition Link Resource' = 'C:\xmwxzwxdfjnou\qhbqorezwx.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Hardware Video Bus Name] 'ImagePath' = 'C:\xmwxzwxdfjnou\qhbqorezwx.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Hardware Video Bus Name] 'Start' = '00000002'
- 'C:\xmwxzwxdfjnou\uneuiurd.exe' "c:\xmwxzwxdfjnou\qhbqorezwx.exe"
- 'C:\xmwxzwxdfjnou\qhbqorezwx.exe'
- 'C:\xmwxzwxdfjnou\qvnz2ksafkrqbpax.exe'
- C:\xmwxzwxdfjnou\qhbqorezwx.exe
- C:\xmwxzwxdfjnou\uneuiurd.exe
- C:\xmwxzwxdfjnou\wjtjioegr3a
- %WINDIR%\xmwxzwxdfjnou\oe1a4o
- C:\xmwxzwxdfjnou\oe1a4o
- C:\xmwxzwxdfjnou\qvnz2ksafkrqbpax.exe
- C:\xmwxzwxdfjnou\uneuiurd.exe
- C:\xmwxzwxdfjnou\qhbqorezwx.exe
- C:\xmwxzwxdfjnou\qvnz2ksafkrqbpax.exe
- %WINDIR%\xmwxzwxdfjnou\oe1a4o
- %WINDIR%\xmwxzwxdfjnou\oe1a4o
- '80.##1.86.158':33631
- '94.##1.114.138':44254
- '18#.#72.215.47':51612
- '84.##2.194.230':27426
- '24.##1.42.214':47782
- '19#.#47.86.10':25432
- '81.##4.87.112':37714
- '87.##6.160.36':41347
- ClassName: 'Shell_TrayWnd' WindowName: ''