Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Thread Server Performance SNMP IP Agent' = 'C:\rlgrwfdfgryrgh\jhwjasmtw.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Foundation Topology Layer Studio Link Port] 'ImagePath' = 'C:\rlgrwfdfgryrgh\jhwjasmtw.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Foundation Topology Layer Studio Link Port] 'Start' = '00000002'
- 'C:\rlgrwfdfgryrgh\krbuobrumoe.exe' "c:\rlgrwfdfgryrgh\jhwjasmtw.exe"
- 'C:\rlgrwfdfgryrgh\jhwjasmtw.exe'
- 'C:\rlgrwfdfgryrgh\qd0e2bh7ufxig5jy.exe'
- C:\rlgrwfdfgryrgh\jhwjasmtw.exe
- C:\rlgrwfdfgryrgh\krbuobrumoe.exe
- C:\rlgrwfdfgryrgh\yinotjtennj
- %WINDIR%\rlgrwfdfgryrgh\mwrq6dgqo
- C:\rlgrwfdfgryrgh\mwrq6dgqo
- C:\rlgrwfdfgryrgh\qd0e2bh7ufxig5jy.exe
- C:\rlgrwfdfgryrgh\krbuobrumoe.exe
- C:\rlgrwfdfgryrgh\jhwjasmtw.exe
- C:\rlgrwfdfgryrgh\qd0e2bh7ufxig5jy.exe
- %WINDIR%\rlgrwfdfgryrgh\mwrq6dgqo
- %WINDIR%\rlgrwfdfgryrgh\mwrq6dgqo
- '2.##.19.50':35833
- '24.##9.216.168':33794
- '87.##.38.225':33631
- '18#.#23.70.113':37727
- '84.##8.128.25':27132
- '74.#5.64.25':22739
- '10#.#24.230.242':49777
- '62.##.253.114':51156
- '98.##.223.221':20922
- '88.#48.36.4':25752
- ClassName: 'OleMainThreadWndClass' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''