Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Propagation WinHTTP WWAN Controls' = 'C:\qnyharredjplwwe\bjdviqrrqe.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Drive CNG Player BranchCache Reports] 'ImagePath' = 'C:\qnyharredjplwwe\bjdviqrrqe.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Drive CNG Player BranchCache Reports] 'Start' = '00000002'
- 'C:\qnyharredjplwwe\kmlxvblm.exe' "c:\qnyharredjplwwe\bjdviqrrqe.exe"
- 'C:\qnyharredjplwwe\bjdviqrrqe.exe'
- 'C:\qnyharredjplwwe\pfwhh2thnukoevaas.exe'
- C:\qnyharredjplwwe\bjdviqrrqe.exe
- C:\qnyharredjplwwe\kmlxvblm.exe
- C:\qnyharredjplwwe\hic7wgxarpm
- %WINDIR%\qnyharredjplwwe\ptctglsk
- C:\qnyharredjplwwe\ptctglsk
- C:\qnyharredjplwwe\pfwhh2thnukoevaas.exe
- C:\qnyharredjplwwe\kmlxvblm.exe
- C:\qnyharredjplwwe\bjdviqrrqe.exe
- C:\qnyharredjplwwe\pfwhh2thnukoevaas.exe
- %WINDIR%\qnyharredjplwwe\ptctglsk
- %WINDIR%\qnyharredjplwwe\ptctglsk
- '79.##7.196.121':45688
- '20#.#70.207.211':37727
- '87.##.238.184':44724
- '86.##5.219.12':21375
- '5.#.166.192':41199
- '19#.#62.66.148':52345
- '24.##9.216.168':33794
- '18#.#45.182.189':37331
- ClassName: 'Shell_TrayWnd' WindowName: ''