Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Store Routing Configuration Layer' = 'C:\wwcqtssjxjzx\xfaiczo.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Presentation Notification] 'ImagePath' = 'C:\wwcqtssjxjzx\xfaiczo.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Presentation Notification] 'Start' = '00000002'
- 'C:\wwcqtssjxjzx\ukzqjxbfua.exe' "c:\wwcqtssjxjzx\xfaiczo.exe"
- 'C:\wwcqtssjxjzx\xfaiczo.exe'
- 'C:\wwcqtssjxjzx\opb53r0febuxpdxkiw.exe'
- C:\wwcqtssjxjzx\xfaiczo.exe
- C:\wwcqtssjxjzx\ukzqjxbfua.exe
- C:\wwcqtssjxjzx\temo77eap
- %WINDIR%\wwcqtssjxjzx\xvklkj4
- C:\wwcqtssjxjzx\xvklkj4
- C:\wwcqtssjxjzx\opb53r0febuxpdxkiw.exe
- C:\wwcqtssjxjzx\ukzqjxbfua.exe
- C:\wwcqtssjxjzx\xfaiczo.exe
- C:\wwcqtssjxjzx\opb53r0febuxpdxkiw.exe
- %WINDIR%\wwcqtssjxjzx\xvklkj4
- %WINDIR%\wwcqtssjxjzx\xvklkj4
- '88.##.203.114':40413
- '21#.#19.80.21':36542
- '87.##6.160.36':41347
- '74.#5.64.25':22739
- '10#.#56.58.121':45860
- '18#.#5.131.224':26337
- '88.#48.36.4':25752
- '87.##.238.184':44724
- ClassName: 'Shell_TrayWnd' WindowName: ''