Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Awareness Netlogon Audio Media WinHTTP' = 'C:\yygiqvlkeahr\cuwcqiz.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Extensible Collector Accounts] 'ImagePath' = 'C:\yygiqvlkeahr\cuwcqiz.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Extensible Collector Accounts] 'Start' = '00000002'
- 'C:\yygiqvlkeahr\lglgpnwplu.exe' "c:\yygiqvlkeahr\cuwcqiz.exe"
- 'C:\yygiqvlkeahr\cuwcqiz.exe'
- 'C:\yygiqvlkeahr\zc2o6opxg0u3ohouw.exe'
- C:\yygiqvlkeahr\cuwcqiz.exe
- C:\yygiqvlkeahr\lglgpnwplu.exe
- C:\yygiqvlkeahr\psrq0bsaedp
- %WINDIR%\yygiqvlkeahr\zraahguc
- C:\yygiqvlkeahr\zraahguc
- C:\yygiqvlkeahr\zc2o6opxg0u3ohouw.exe
- C:\yygiqvlkeahr\lglgpnwplu.exe
- C:\yygiqvlkeahr\cuwcqiz.exe
- C:\yygiqvlkeahr\zc2o6opxg0u3ohouw.exe
- %WINDIR%\yygiqvlkeahr\zraahguc
- %WINDIR%\yygiqvlkeahr\zraahguc
- '18#.#22.43.28':46084
- '22#.#1.110.45':48008
- '95.##8.241.220':49038
- '70.##2.38.96':41500
- '10#.#46.77.146':33927
- '18#.#0.243.3':25741
- '79.##3.139.198':21201
- '5.##.147.5':26337
- '86.#8.69.58':22437
- '62.##.253.114':51156
- '21#.#07.110.82':26314
- ClassName: 'Shell_TrayWnd' WindowName: ''