Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Function Collector Print Firewall' = 'C:\lkdkybeanerjbxr\qtsiksiuzu.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\RPC Resolution Adaptive Port Audio Initiator] 'ImagePath' = 'C:\lkdkybeanerjbxr\qtsiksiuzu.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\RPC Resolution Adaptive Port Audio Initiator] 'Start' = '00000002'
- 'C:\lkdkybeanerjbxr\yxyikvyxdya.exe' "c:\lkdkybeanerjbxr\qtsiksiuzu.exe"
- 'C:\lkdkybeanerjbxr\qtsiksiuzu.exe'
- 'C:\lkdkybeanerjbxr\hd2wddknwpzdfjp65w.exe'
- C:\lkdkybeanerjbxr\qtsiksiuzu.exe
- C:\lkdkybeanerjbxr\yxyikvyxdya.exe
- C:\lkdkybeanerjbxr\s2yvzyl
- %WINDIR%\lkdkybeanerjbxr\ge2noywwrr
- C:\lkdkybeanerjbxr\ge2noywwrr
- C:\lkdkybeanerjbxr\hd2wddknwpzdfjp65w.exe
- C:\lkdkybeanerjbxr\yxyikvyxdya.exe
- C:\lkdkybeanerjbxr\qtsiksiuzu.exe
- C:\lkdkybeanerjbxr\hd2wddknwpzdfjp65w.exe
- %WINDIR%\lkdkybeanerjbxr\ge2noywwrr
- %WINDIR%\lkdkybeanerjbxr\ge2noywwrr
- '37.##2.223.103':22969
- '19#.#62.66.148':52345
- '18#.#07.197.116':24498
- '19#.74.51.3':32904
- '81.##7.50.99':52074
- '84.##8.130.85':27132
- '20#.#70.207.211':37727
- '24.##9.216.168':33794
- ClassName: 'Shell_TrayWnd' WindowName: ''