Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Cryptographic Window COM+ Management DNS Connect' = 'C:\nhyiholngl\xodsvis.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Center UPnP Driver Port Alerts Plug Networking] 'ImagePath' = 'C:\nhyiholngl\xodsvis.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Center UPnP Driver Port Alerts Plug Networking] 'Start' = '00000002'
- 'C:\nhyiholngl\niziohfvb.exe' "c:\nhyiholngl\xodsvis.exe"
- 'C:\nhyiholngl\xodsvis.exe'
- 'C:\nhyiholngl\lr2rk7eemvhcphqs.exe'
- C:\nhyiholngl\xodsvis.exe
- C:\nhyiholngl\niziohfvb.exe
- C:\nhyiholngl\pfmsbeqlb
- %WINDIR%\nhyiholngl\yqxrkvs
- C:\nhyiholngl\yqxrkvs
- C:\nhyiholngl\lr2rk7eemvhcphqs.exe
- C:\nhyiholngl\niziohfvb.exe
- C:\nhyiholngl\xodsvis.exe
- C:\nhyiholngl\lr2rk7eemvhcphqs.exe
- %WINDIR%\nhyiholngl\yqxrkvs
- %WINDIR%\nhyiholngl\yqxrkvs
- '77.##7.13.68':30018
- '19#.#0.96.220':41884
- '20#.#7.225.58':33073
- '18#.#5.131.224':26337
- '20#.#36.131.186':52293
- '5.#.166.192':41199
- '81.##7.50.99':52074
- '18#.#0.220.30':25741
- ClassName: 'Shell_TrayWnd' WindowName: ''