Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Desktop Virtual Keying Resolution' = 'C:\omtggnejhlt\bhvblgejwgwv.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Transfer Offline AutoConfig] 'ImagePath' = 'C:\omtggnejhlt\bhvblgejwgwv.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Transfer Offline AutoConfig] 'Start' = '00000002'
- 'C:\omtggnejhlt\vxcbyoeuyob.exe' "c:\omtggnejhlt\bhvblgejwgwv.exe"
- 'C:\omtggnejhlt\bhvblgejwgwv.exe'
- 'C:\omtggnejhlt\efp2xhqnspvmz9snx.exe'
- C:\omtggnejhlt\bhvblgejwgwv.exe
- C:\omtggnejhlt\vxcbyoeuyob.exe
- C:\omtggnejhlt\yvsf3yhcw
- %WINDIR%\omtggnejhlt\mjlbvazhactg
- C:\omtggnejhlt\mjlbvazhactg
- C:\omtggnejhlt\efp2xhqnspvmz9snx.exe
- C:\omtggnejhlt\vxcbyoeuyob.exe
- C:\omtggnejhlt\bhvblgejwgwv.exe
- C:\omtggnejhlt\efp2xhqnspvmz9snx.exe
- %WINDIR%\omtggnejhlt\mjlbvazhactg
- %WINDIR%\omtggnejhlt\mjlbvazhactg
- '37.##2.223.103':22969
- '92.##7.45.207':21921
- '21#.#19.80.21':36542
- '88.#48.36.4':25752
- '18#.#55.161.27':20052
- '19#.#54.74.242':31770
- '22#.#1.110.45':48008
- '12#.#60.112.138':27440
- ClassName: 'Shell_TrayWnd' WindowName: ''