Technical Information
- [<HKLM>\System\CurrentControlSet\Services\Rsmcog cuqkkake] 'Start' = '00000002'
- [<HKLM>\System\CurrentControlSet\Services\Rsmcog cuqkkake] 'ImagePath' = '%ProgramFiles(x86)%\Hdffpxj.exe'
- 'Rsmcog cuqkkake' %ProgramFiles(x86)%\Hdffpxj.exe
- %ProgramFiles(x86)%\hdffpxj.exe
- %ProgramFiles(x86)%\hdffpxj.exe
- from <Full path to file> to %WINDIR%\syswow64\463915.bak
- '15#.#42.98.207':80
- '12#.#1.50.122':8000
- '12#.#1.50.122':8000
- '%ProgramFiles(x86)%\hdffpxj.exe'
- '%ProgramFiles(x86)%\hdffpxj.exe' Win7