Техническая информация
- [<HKLM>\System\CurrentControlSet\Services\iSCSI Endpoint UPnP Card Event] 'Start' = '00000002'
- [<HKLM>\System\CurrentControlSet\Services\iSCSI Endpoint UPnP Card Event] 'ImagePath' = 'C:\mvezftm\odteijsmqbqf.exe'
- 'iSCSI Endpoint UPnP Card Event' C:\mvezftm\odteijsmqbqf.exe
- %WINDIR%\mvezftm\xdddxorgnruf
- C:\mvezftm\xdddxorgnruf
- C:\mvezftm\r8tp33hjnoxwinnkd.exe
- C:\mvezftm\odteijsmqbqf.exe
- C:\mvezftm\tnxxworw.exe
- C:\mvezftm\gviyy5z
- C:\mvezftm\odteijsmqbqf.exe
- C:\mvezftm\tnxxworw.exe
- %WINDIR%\mvezftm\xdddxorgnruf
- C:\mvezftm\r8tp33hjnoxwinnkd.exe
- %WINDIR%\mvezftm\xdddxorgnruf
- '10#.#9.142.6':20155
- '18#.2.10.6':44843
- '77.##6.220.10':30018
- '89.##0.20.12':46689
- '10#.#4.195.221':33634
- '84.##7.100.62':48747
- '98.##.221.92':20922
- 'C:\mvezftm\r8tp33hjnoxwinnkd.exe'
- 'C:\mvezftm\odteijsmqbqf.exe'
- 'C:\mvezftm\tnxxworw.exe' "c:\mvezftm\odteijsmqbqf.exe"