Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'File Task Adapter Topology Tunneling' = 'C:\kamcyebxsc\mnheiowgqou.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Files Tunneling NetBIOS Gateway Plug] 'ImagePath' = 'C:\kamcyebxsc\mnheiowgqou.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Files Tunneling NetBIOS Gateway Plug] 'Start' = '00000002'
- 'C:\kamcyebxsc\dfxegmks.exe' "c:\kamcyebxsc\mnheiowgqou.exe"
- 'C:\kamcyebxsc\mnheiowgqou.exe'
- 'C:\kamcyebxsc\bbte2u7opptycakjc.exe'
- %TEMP%\WER19b7.dir00\dfxegmks.exe.mdmp
- C:\kamcyebxsc\pmhdtm
- %TEMP%\WER19b7.dir00\dfxegmks.exe.hdmp
- %TEMP%\WER19b7.dir00\manifest.txt
- %TEMP%\WER19b7.dir00\appcompat.txt
- C:\kamcyebxsc\pyuyq9t7
- %WINDIR%\kamcyebxsc\pyuyq9t7
- C:\kamcyebxsc\bbte2u7opptycakjc.exe
- C:\kamcyebxsc\dfxegmks.exe
- C:\kamcyebxsc\mnheiowgqou.exe
- C:\kamcyebxsc\dfxegmks.exe
- C:\kamcyebxsc\mnheiowgqou.exe
- C:\kamcyebxsc\bbte2u7opptycakjc.exe
- %WINDIR%\kamcyebxsc\pyuyq9t7
- %WINDIR%\kamcyebxsc\pyuyq9t7
- '31.##7.83.237':44843
- '21#.#7.168.28':52231
- '84.##8.128.25':27132
- '18#.#38.249.34':37331
- ClassName: 'Shell_TrayWnd' WindowName: ''