Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Bluetooth User-mode Scheduler Connectivity' = 'C:\jfrivbejmyfl\idtnlhbp.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\System Security Volume Gateway] 'ImagePath' = 'C:\jfrivbejmyfl\idtnlhbp.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\System Security Volume Gateway] 'Start' = '00000002'
- 'C:\jfrivbejmyfl\hewbosobf.exe' "c:\jfrivbejmyfl\idtnlhbp.exe"
- 'C:\jfrivbejmyfl\idtnlhbp.exe'
- 'C:\jfrivbejmyfl\ckhh2vllgtaefuu2ww.exe'
- C:\jfrivbejmyfl\idtnlhbp.exe
- C:\jfrivbejmyfl\hewbosobf.exe
- C:\jfrivbejmyfl\y2hzcd6qx
- %WINDIR%\jfrivbejmyfl\jtllefkf4so
- C:\jfrivbejmyfl\jtllefkf4so
- C:\jfrivbejmyfl\ckhh2vllgtaefuu2ww.exe
- C:\jfrivbejmyfl\hewbosobf.exe
- C:\jfrivbejmyfl\idtnlhbp.exe
- C:\jfrivbejmyfl\ckhh2vllgtaefuu2ww.exe
- %WINDIR%\jfrivbejmyfl\jtllefkf4so
- %WINDIR%\jfrivbejmyfl\jtllefkf4so
- '72.##1.47.203':22399
- '84.##2.194.230':27426
- '88.#48.36.4':25752
- '88.##.203.114':40413
- '12#.#60.123.173':36805
- '86.##.69.232':41590
- '71.##2.212.226':26466
- '79.##7.196.121':45688
- ClassName: 'Shell_TrayWnd' WindowName: ''