Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Instrumentation Gateway AutoConfig Access' = 'C:\czetrltvilng\rnxgvsrcvta.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Problem Event PC Biometric Distributed] 'ImagePath' = 'C:\czetrltvilng\rnxgvsrcvta.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Problem Event PC Biometric Distributed] 'Start' = '00000002'
- 'C:\czetrltvilng\strkoxi.exe' "c:\czetrltvilng\rnxgvsrcvta.exe"
- 'C:\czetrltvilng\rnxgvsrcvta.exe'
- 'C:\czetrltvilng\scqks37sep1hyqdmmo.exe'
- C:\czetrltvilng\rnxgvsrcvta.exe
- C:\czetrltvilng\strkoxi.exe
- C:\czetrltvilng\ynzawg
- %WINDIR%\czetrltvilng\kh2zdtelos
- C:\czetrltvilng\kh2zdtelos
- C:\czetrltvilng\scqks37sep1hyqdmmo.exe
- C:\czetrltvilng\strkoxi.exe
- C:\czetrltvilng\rnxgvsrcvta.exe
- C:\czetrltvilng\scqks37sep1hyqdmmo.exe
- %WINDIR%\czetrltvilng\kh2zdtelos
- %WINDIR%\czetrltvilng\kh2zdtelos
- '37.##2.223.103':22969
- '72.##1.47.203':22399
- '10#.#56.58.121':45860
- '10#.#67.38.149':20466
- '19#.74.51.3':32904
- '18#.#39.124.68':37599
- '19#.#54.74.242':31770
- '19#.#7.134.20':44965
- ClassName: 'Shell_TrayWnd' WindowName: ''