Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Publication KtmRm Drive Port Location' = 'C:\stevenkndwnpbka\xzpnpgghwl.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Access Color Multimedia Trap Link-Layer] 'ImagePath' = 'C:\stevenkndwnpbka\xzpnpgghwl.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Access Color Multimedia Trap Link-Layer] 'Start' = '00000002'
- 'C:\stevenkndwnpbka\lxcmclojwsp.exe' "c:\stevenkndwnpbka\xzpnpgghwl.exe"
- 'C:\stevenkndwnpbka\xzpnpgghwl.exe'
- 'C:\stevenkndwnpbka\zid31lqg0hqgble20.exe'
- C:\stevenkndwnpbka\xzpnpgghwl.exe
- C:\stevenkndwnpbka\lxcmclojwsp.exe
- C:\stevenkndwnpbka\riaw5u
- %WINDIR%\stevenkndwnpbka\yuyfcpz0roa
- C:\stevenkndwnpbka\yuyfcpz0roa
- C:\stevenkndwnpbka\zid31lqg0hqgble20.exe
- C:\stevenkndwnpbka\lxcmclojwsp.exe
- C:\stevenkndwnpbka\xzpnpgghwl.exe
- C:\stevenkndwnpbka\zid31lqg0hqgble20.exe
- %WINDIR%\stevenkndwnpbka\yuyfcpz0roa
- %WINDIR%\stevenkndwnpbka\yuyfcpz0roa
- '85.#4.86.41':51481
- '10#.#22.111.221':45678
- '11#.#18.187.28':42065
- '20#.#23.152.97':27682
- '10#.#5.150.243':24830
- '10#.#89.140.68':41209
- '74.#5.64.25':22739
- '97.##.251.170':31083
- ClassName: 'Shell_TrayWnd' WindowName: ''