Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Quality Engine Logon Helper Level' = 'C:\buskwcvcatssu\wnktullnmarx.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Protocol Connection Files] 'ImagePath' = 'C:\buskwcvcatssu\wnktullnmarx.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Protocol Connection Files] 'Start' = '00000002'
- 'C:\buskwcvcatssu\kpxskfrwjt.exe' "c:\buskwcvcatssu\wnktullnmarx.exe"
- 'C:\buskwcvcatssu\wnktullnmarx.exe'
- 'C:\buskwcvcatssu\io12dcxomogbm8i.exe'
- C:\buskwcvcatssu\wnktullnmarx.exe
- C:\buskwcvcatssu\kpxskfrwjt.exe
- C:\buskwcvcatssu\h8bkonize
- %WINDIR%\buskwcvcatssu\dmkkhkrrt
- C:\buskwcvcatssu\dmkkhkrrt
- C:\buskwcvcatssu\io12dcxomogbm8i.exe
- C:\buskwcvcatssu\kpxskfrwjt.exe
- C:\buskwcvcatssu\wnktullnmarx.exe
- C:\buskwcvcatssu\io12dcxomogbm8i.exe
- %WINDIR%\buskwcvcatssu\dmkkhkrrt
- %WINDIR%\buskwcvcatssu\dmkkhkrrt
- '86.##.69.232':41590
- '70.##5.4.143':41500
- '67.##.64.252':27314
- '93.##7.67.155':25640
- '19#.#47.86.10':25432
- '85.##.122.169':40540
- '10#.#46.77.146':33927
- '94.##1.114.138':44254
- ClassName: 'OleMainThreadWndClass' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''