Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Assistant Grouping COM+ AutoConnect' = 'C:\lsmtatlisynjhj\hmvueum.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Defragmenter Support Play Class Computer Wired] 'ImagePath' = 'C:\lsmtatlisynjhj\hmvueum.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Defragmenter Support Play Class Computer Wired] 'Start' = '00000002'
- 'C:\lsmtatlisynjhj\wxeiwetyq.exe' "c:\lsmtatlisynjhj\hmvueum.exe"
- 'C:\lsmtatlisynjhj\hmvueum.exe'
- 'C:\lsmtatlisynjhj\x6b2ee8bbqdjjpnnydd.exe'
- C:\lsmtatlisynjhj\hmvueum.exe
- C:\lsmtatlisynjhj\wxeiwetyq.exe
- C:\lsmtatlisynjhj\dr5gzjh
- %WINDIR%\lsmtatlisynjhj\vblmvqai4yx
- C:\lsmtatlisynjhj\vblmvqai4yx
- C:\lsmtatlisynjhj\x6b2ee8bbqdjjpnnydd.exe
- C:\lsmtatlisynjhj\wxeiwetyq.exe
- C:\lsmtatlisynjhj\hmvueum.exe
- C:\lsmtatlisynjhj\x6b2ee8bbqdjjpnnydd.exe
- %WINDIR%\lsmtatlisynjhj\vblmvqai4yx
- %WINDIR%\lsmtatlisynjhj\vblmvqai4yx
- '19#.#6.240.249':21875
- '88.#48.36.4':25752
- '87.##.38.225':33631
- '77.##7.13.68':30018
- '86.##.69.232':41590
- '98.##.223.221':20922
- '15#.#82.245.137':33982
- '31.##7.83.237':44843
- '94.##1.114.138':44254
- '17#.37.2.43':44303
- '5.##.19.242':27426
- ClassName: 'Shell_TrayWnd' WindowName: ''