Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Resource Engine Management' = 'C:\rdbmxkgyoeyh\bhwnbgact.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Now DHCP Registry AutoConnect] 'ImagePath' = 'C:\rdbmxkgyoeyh\bhwnbgact.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Now DHCP Registry AutoConnect] 'Start' = '00000002'
- 'C:\rdbmxkgyoeyh\bjsmfoqxazf.exe' "c:\rdbmxkgyoeyh\bhwnbgact.exe"
- 'C:\rdbmxkgyoeyh\bhwnbgact.exe'
- 'C:\rdbmxkgyoeyh\rz2sa8qtse6lvm.exe'
- C:\rdbmxkgyoeyh\bhwnbgact.exe
- C:\rdbmxkgyoeyh\bjsmfoqxazf.exe
- C:\rdbmxkgyoeyh\qklxeja2
- %WINDIR%\rdbmxkgyoeyh\t8emivofql8i
- C:\rdbmxkgyoeyh\t8emivofql8i
- C:\rdbmxkgyoeyh\rz2sa8qtse6lvm.exe
- C:\rdbmxkgyoeyh\bjsmfoqxazf.exe
- C:\rdbmxkgyoeyh\bhwnbgact.exe
- C:\rdbmxkgyoeyh\rz2sa8qtse6lvm.exe
- %WINDIR%\rdbmxkgyoeyh\t8emivofql8i
- %WINDIR%\rdbmxkgyoeyh\t8emivofql8i
- '15#.#82.245.137':33982
- '79.##.202.44':23699
- '11#.#18.187.28':42065
- '18#.#55.19.91':30767
- '98.##0.152.114':48605
- '18#.#45.182.189':37331
- '77.##.186.45':43519
- '19#.#7.134.20':44965
- ClassName: 'Shell_TrayWnd' WindowName: ''