Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Routing Connect Center Security' = 'C:\frmaxjdn\brahqhqsid.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Engine Client Certificate] 'ImagePath' = 'C:\frmaxjdn\brahqhqsid.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Engine Client Certificate] 'Start' = '00000002'
- 'C:\frmaxjdn\niixvurrkwta.exe' "c:\frmaxjdn\brahqhqsid.exe"
- 'C:\frmaxjdn\brahqhqsid.exe'
- 'C:\frmaxjdn\kj2ur7q6eovspd0au.exe'
- C:\frmaxjdn\brahqhqsid.exe
- C:\frmaxjdn\niixvurrkwta.exe
- C:\frmaxjdn\lwvaociz
- %WINDIR%\frmaxjdn\pweqkycoxlv
- C:\frmaxjdn\pweqkycoxlv
- C:\frmaxjdn\kj2ur7q6eovspd0au.exe
- C:\frmaxjdn\niixvurrkwta.exe
- C:\frmaxjdn\brahqhqsid.exe
- C:\frmaxjdn\kj2ur7q6eovspd0au.exe
- %WINDIR%\frmaxjdn\pweqkycoxlv
- %WINDIR%\frmaxjdn\pweqkycoxlv
- '18#.#0.220.30':25741
- '11#.#18.187.28':42065
- '15#.#82.245.137':33982
- '81.##7.50.99':52074
- '86.##5.19.130':27743
- '19#.#47.86.10':25432
- '62.##1.108.194':20068
- '2.##.19.50':35833
- ClassName: 'Shell_TrayWnd' WindowName: ''