Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\services\Controls Studio Font Interactive] 'Start' = '00000002'
- 'C:\mmtldtzoy\uxdiyahpzxva.exe' "c:\mmtldtzoy\sfwgptdv.exe"
- 'C:\mmtldtzoy\sfwgptdv.exe'
- 'C:\mmtldtzoy\mfz7ktkslstwwcoaq.exe'
- C:\mmtldtzoy\sfwgptdv.exe
- C:\mmtldtzoy\uxdiyahpzxva.exe
- C:\mmtldtzoy\eyqephxlbj5
- %WINDIR%\mmtldtzoy\mspmdjqlgp6
- C:\mmtldtzoy\mspmdjqlgp6
- C:\mmtldtzoy\mfz7ktkslstwwcoaq.exe
- C:\mmtldtzoy\uxdiyahpzxva.exe
- C:\mmtldtzoy\sfwgptdv.exe
- C:\mmtldtzoy\mfz7ktkslstwwcoaq.exe
- %WINDIR%\mmtldtzoy\mspmdjqlgp6
- DNS ASK of###health.net
- DNS ASK al####eparate.net
- DNS ASK al###health.net
- DNS ASK al####lothes.net
- DNS ASK of####lothes.net
- DNS ASK of####eparate.net
- DNS ASK co####eclothes.net
- DNS ASK ch####lothes.net
- DNS ASK dn#.##ftncsi.com
- DNS ASK co####edistant.net
- DNS ASK ch####istant.net
- ClassName: 'Shell_TrayWnd' WindowName: ''