Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'SSDP BitLocker Audio ActiveX' = 'C:\coczfhkzklsqlg\dxntyum.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Modules Registrar Ordering File] 'ImagePath' = 'C:\coczfhkzklsqlg\dxntyum.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Modules Registrar Ordering File] 'Start' = '00000002'
- 'C:\coczfhkzklsqlg\fojzwuehomli.exe' "c:\coczfhkzklsqlg\dxntyum.exe"
- 'C:\coczfhkzklsqlg\dxntyum.exe'
- 'C:\coczfhkzklsqlg\mfkq36d6cvciavmnsn3.exe'
- C:\coczfhkzklsqlg\dxntyum.exe
- C:\coczfhkzklsqlg\fojzwuehomli.exe
- C:\coczfhkzklsqlg\thvqdpe9iltf
- %WINDIR%\coczfhkzklsqlg\vqumoweg
- C:\coczfhkzklsqlg\vqumoweg
- C:\coczfhkzklsqlg\mfkq36d6cvciavmnsn3.exe
- C:\coczfhkzklsqlg\fojzwuehomli.exe
- C:\coczfhkzklsqlg\dxntyum.exe
- C:\coczfhkzklsqlg\mfkq36d6cvciavmnsn3.exe
- %WINDIR%\coczfhkzklsqlg\vqumoweg
- %WINDIR%\coczfhkzklsqlg\vqumoweg
- '72.#9.59.91':23362
- '12#.#60.112.138':27440
- '11#.#18.187.28':42065
- '5.##.147.158':23144
- '10#.#56.58.121':45860
- '88.##.203.114':40413
- '98.##0.152.114':48605
- '21#.#7.168.28':52231
- ClassName: 'Shell_TrayWnd' WindowName: ''