Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Presentation Protocol Connect' = 'C:\iibxfmyczsantsp\xyhrnozmn.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Plug Removal Center Problem] 'ImagePath' = 'C:\iibxfmyczsantsp\xyhrnozmn.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Plug Removal Center Problem] 'Start' = '00000002'
- 'C:\iibxfmyczsantsp\livmseq.exe' "c:\iibxfmyczsantsp\xyhrnozmn.exe"
- 'C:\iibxfmyczsantsp\xyhrnozmn.exe'
- 'C:\iibxfmyczsantsp\vrt2g7cpbgsu4dz5r.exe'
- C:\iibxfmyczsantsp\xyhrnozmn.exe
- C:\iibxfmyczsantsp\livmseq.exe
- C:\iibxfmyczsantsp\jmugqzarnlb
- %WINDIR%\iibxfmyczsantsp\t9axzwqvserh
- C:\iibxfmyczsantsp\t9axzwqvserh
- C:\iibxfmyczsantsp\vrt2g7cpbgsu4dz5r.exe
- C:\iibxfmyczsantsp\livmseq.exe
- C:\iibxfmyczsantsp\xyhrnozmn.exe
- C:\iibxfmyczsantsp\vrt2g7cpbgsu4dz5r.exe
- %WINDIR%\iibxfmyczsantsp\t9axzwqvserh
- %WINDIR%\iibxfmyczsantsp\t9axzwqvserh
- '80.##1.86.158':33631
- '22#.#1.110.45':48008
- '74.#5.64.25':22739
- '11#.#6.137.96':49919
- '86.##5.10.227':45279
- '77.##8.205.139':22969
- '10#.#28.239.221':49777
- '2.##.167.151':22437
- ClassName: 'Shell_TrayWnd' WindowName: ''