Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\services\Media DLL DNS Shadow Controls] 'Start' = '00000002'
- 'C:\xsggzhvsojn\isovupjmexhn.exe' "c:\xsggzhvsojn\nuyhexqf.exe"
- 'C:\xsggzhvsojn\nuyhexqf.exe'
- 'C:\xsggzhvsojn\nzgynielulislhn4vxyej.exe'
- C:\xsggzhvsojn\nuyhexqf.exe
- C:\xsggzhvsojn\isovupjmexhn.exe
- C:\xsggzhvsojn\jvtspkfa
- %WINDIR%\xsggzhvsojn\lp6uwre
- C:\xsggzhvsojn\lp6uwre
- C:\xsggzhvsojn\nzgynielulislhn4vxyej.exe
- C:\xsggzhvsojn\isovupjmexhn.exe
- C:\xsggzhvsojn\nuyhexqf.exe
- C:\xsggzhvsojn\nzgynielulislhn4vxyej.exe
- %WINDIR%\xsggzhvsojn\lp6uwre
- DNS ASK ci####tteanimal.net
- DNS ASK pi####eanimal.net
- DNS ASK pi####eproblem.net
- DNS ASK pi####emodern.net
- DNS ASK ci#####teproblem.net
- DNS ASK ci####tteescape.net
- DNS ASK fi####modern.net
- DNS ASK th####problem.net
- DNS ASK dn#.##ftncsi.com
- DNS ASK pi####eescape.net
- DNS ASK th####modern.net
- ClassName: 'Shell_TrayWnd' WindowName: ''