Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Scheduler Networking WebClient IP Builder' = 'C:\bgnhpbcrsu\reglwuev.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Auto-Discovery Config Distributed] 'ImagePath' = 'C:\bgnhpbcrsu\reglwuev.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Auto-Discovery Config Distributed] 'Start' = '00000002'
- 'C:\bgnhpbcrsu\keceofohdi.exe' "c:\bgnhpbcrsu\reglwuev.exe"
- 'C:\bgnhpbcrsu\reglwuev.exe'
- 'C:\bgnhpbcrsu\bf6z2ygwddicujx1hq.exe'
- C:\bgnhpbcrsu\reglwuev.exe
- C:\bgnhpbcrsu\keceofohdi.exe
- C:\bgnhpbcrsu\za1lnzqsesx
- %WINDIR%\bgnhpbcrsu\sxijx7
- C:\bgnhpbcrsu\sxijx7
- C:\bgnhpbcrsu\bf6z2ygwddicujx1hq.exe
- C:\bgnhpbcrsu\keceofohdi.exe
- C:\bgnhpbcrsu\reglwuev.exe
- C:\bgnhpbcrsu\bf6z2ygwddicujx1hq.exe
- %WINDIR%\bgnhpbcrsu\sxijx7
- %WINDIR%\bgnhpbcrsu\sxijx7
- '77.##7.13.68':30018
- '67.##.64.252':27314
- '22#.#1.110.45':48008
- '86.##5.10.227':45279
- '37.##2.223.103':22969
- '10#.#67.38.149':20466
- '18#.#5.131.224':26337
- '86.##5.219.12':21375
- ClassName: 'Shell_TrayWnd' WindowName: ''