Technical Information
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Auto TPM Publication Extender Connect Gateway' = 'C:\myujntqqov\iijlfcd.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Performance Power Shadow DHCP] 'ImagePath' = 'C:\myujntqqov\iijlfcd.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Performance Power Shadow DHCP] 'Start' = '00000002'
- 'C:\myujntqqov\xucfwka.exe' "c:\myujntqqov\iijlfcd.exe"
- 'C:\myujntqqov\iijlfcd.exe'
- 'C:\myujntqqov\uapfj2msrl8thymnkmo.exe'
- C:\myujntqqov\iijlfcd.exe
- C:\myujntqqov\xucfwka.exe
- C:\myujntqqov\vjfsal3ttbbb
- %WINDIR%\myujntqqov\rbjfy5qbkr
- C:\myujntqqov\rbjfy5qbkr
- C:\myujntqqov\uapfj2msrl8thymnkmo.exe
- C:\myujntqqov\xucfwka.exe
- C:\myujntqqov\iijlfcd.exe
- C:\myujntqqov\uapfj2msrl8thymnkmo.exe
- %WINDIR%\myujntqqov\rbjfy5qbkr
- '84.##2.194.230':27426
- '67.##.64.252':27314
- '18#.#22.45.37':46084
- '17#.#50.138.208':20422
- '10#.#02.79.27':36272
- '95.##7.243.188':49038
- '24.##9.216.168':33794
- '19#.#62.66.148':52345
- ClassName: 'Shell_TrayWnd' WindowName: ''