Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Procedure Intelligent' = 'C:\pfbkaukefvsh\fewhuzw.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Log Input Interactive Drive IPsec CNG Support] 'ImagePath' = 'C:\pfbkaukefvsh\fewhuzw.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Log Input Interactive Drive IPsec CNG Support] 'Start' = '00000002'
- 'C:\pfbkaukefvsh\oawopeaek.exe' "c:\pfbkaukefvsh\fewhuzw.exe"
- 'C:\pfbkaukefvsh\fewhuzw.exe'
- 'C:\pfbkaukefvsh\cuf2mkyxslob2p2xk.exe'
- C:\pfbkaukefvsh\fewhuzw.exe
- C:\pfbkaukefvsh\oawopeaek.exe
- C:\pfbkaukefvsh\wjjdseqz5
- %WINDIR%\pfbkaukefvsh\aeragk
- C:\pfbkaukefvsh\aeragk
- C:\pfbkaukefvsh\cuf2mkyxslob2p2xk.exe
- C:\pfbkaukefvsh\oawopeaek.exe
- C:\pfbkaukefvsh\fewhuzw.exe
- C:\pfbkaukefvsh\cuf2mkyxslob2p2xk.exe
- %WINDIR%\pfbkaukefvsh\aeragk
- %WINDIR%\pfbkaukefvsh\aeragk
- '10#.#46.77.146':33927
- '37.##2.223.103':22969
- '19#.#0.41.168':43832
- '22#.#1.110.45':48008
- '21#.#19.80.21':36542
- '86.##.69.232':41590
- '10#.#56.58.121':45860
- '84.##8.130.85':27132
- ClassName: 'Shell_TrayWnd' WindowName: ''