Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Services Task BitLocker' = 'C:\tuoqebxwvvafbrv\moliniz.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\SNMP Spooler Acquisition Computer DNS Power] 'ImagePath' = 'C:\tuoqebxwvvafbrv\moliniz.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\SNMP Spooler Acquisition Computer DNS Power] 'Start' = '00000002'
- 'C:\tuoqebxwvvafbrv\pdcqpwf.exe' "c:\tuoqebxwvvafbrv\moliniz.exe"
- 'C:\tuoqebxwvvafbrv\moliniz.exe'
- 'C:\tuoqebxwvvafbrv\riur38h5vfmpffybgug1.exe'
- C:\tuoqebxwvvafbrv\moliniz.exe
- C:\tuoqebxwvvafbrv\pdcqpwf.exe
- C:\tuoqebxwvvafbrv\yuzbykz8z
- %WINDIR%\tuoqebxwvvafbrv\r0ixqbyuwfis
- C:\tuoqebxwvvafbrv\r0ixqbyuwfis
- C:\tuoqebxwvvafbrv\riur38h5vfmpffybgug1.exe
- C:\tuoqebxwvvafbrv\pdcqpwf.exe
- C:\tuoqebxwvvafbrv\moliniz.exe
- C:\tuoqebxwvvafbrv\riur38h5vfmpffybgug1.exe
- %WINDIR%\tuoqebxwvvafbrv\r0ixqbyuwfis
- %WINDIR%\tuoqebxwvvafbrv\r0ixqbyuwfis
- '5.##.19.242':27426
- '31.##7.83.237':44843
- '86.##5.19.130':27743
- '41.##.10.183':48405
- '17#.#50.138.208':20422
- '17#.37.2.43':44303
- '98.##.223.221':20922
- '19#.#47.86.10':25432
- '93.##7.67.155':25640
- '12#.#60.123.173':36805
- '24.##9.216.168':33794
- '10#.#46.77.146':33927
- ClassName: 'Shell_TrayWnd' WindowName: ''