Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Function Engine Quality Accounts RPC Input' = 'C:\dsdfgch\usaxuuswld.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Debugger Acquisition Multimedia Health] 'ImagePath' = 'C:\dsdfgch\usaxuuswld.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Debugger Acquisition Multimedia Health] 'Start' = '00000002'
- 'C:\dsdfgch\pkjpzbsblyz.exe' "c:\dsdfgch\usaxuuswld.exe"
- 'C:\dsdfgch\usaxuuswld.exe'
- 'C:\dsdfgch\ktuu2xj1etitee3emi.exe'
- C:\dsdfgch\usaxuuswld.exe
- C:\dsdfgch\pkjpzbsblyz.exe
- C:\dsdfgch\nz9pv6mton
- %WINDIR%\dsdfgch\za2gh4g
- C:\dsdfgch\za2gh4g
- C:\dsdfgch\ktuu2xj1etitee3emi.exe
- C:\dsdfgch\pkjpzbsblyz.exe
- C:\dsdfgch\usaxuuswld.exe
- C:\dsdfgch\ktuu2xj1etitee3emi.exe
- %WINDIR%\dsdfgch\za2gh4g
- %WINDIR%\dsdfgch\za2gh4g
- '18#.#49.88.79':32097
- '77.##7.13.68':30018
- '11#.#42.143.147':31567
- '20#.#93.204.80':37195
- '22#.#1.110.45':48008
- '83.##0.248.151':23268
- '72.#9.59.91':23362
- '84.##8.130.85':27132
- ClassName: 'Shell_TrayWnd' WindowName: ''