Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Cache Secure TPM Access Studio RPC' = 'C:\fimudvc\symdgkzant.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Registry Routing Key SSDP Error Logs Location] 'ImagePath' = 'C:\fimudvc\symdgkzant.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Registry Routing Key SSDP Error Logs Location] 'Start' = '00000002'
- 'C:\fimudvc\medexzwyz.exe' "c:\fimudvc\symdgkzant.exe"
- 'C:\fimudvc\symdgkzant.exe'
- 'C:\fimudvc\zgg2q44wjz59gvzpbv.exe'
- C:\fimudvc\symdgkzant.exe
- C:\fimudvc\medexzwyz.exe
- C:\fimudvc\mor8uv
- %WINDIR%\fimudvc\wkeeevapr
- C:\fimudvc\wkeeevapr
- C:\fimudvc\zgg2q44wjz59gvzpbv.exe
- C:\fimudvc\medexzwyz.exe
- C:\fimudvc\symdgkzant.exe
- C:\fimudvc\zgg2q44wjz59gvzpbv.exe
- %WINDIR%\fimudvc\wkeeevapr
- %WINDIR%\fimudvc\wkeeevapr
- '20#.#23.152.97':27682
- '20#.#11.99.94':37369
- '10#.#2.195.20':39160
- '79.##1.239.74':42581
- '95.##7.243.188':49038
- '5.##.147.158':23144
- '84.##2.194.230':27426
- '37.##2.223.103':22969
- ClassName: 'Shell_TrayWnd' WindowName: ''