Техническая информация
- [<HKLM>\System\CurrentControlSet\Services\Input Information Receiver Trap SSDP Launcher] 'Start' = '00000002'
- [<HKLM>\System\CurrentControlSet\Services\Input Information Receiver Trap SSDP Launcher] 'ImagePath' = 'C:\qnmytwcm\jpueybh.exe'
- %WINDIR%\qnmytwcm\nhg2pwtjhgi
- C:\qnmytwcm\nhg2pwtjhgi
- C:\qnmytwcm\ukauhezn4fva5isgncn.exe
- C:\qnmytwcm\jpueybh.exe
- C:\qnmytwcm\zzdc4yxqmh.exe
- C:\qnmytwcm\aombkmm4bm5
- C:\qnmytwcm\jpueybh.exe
- C:\qnmytwcm\zzdc4yxqmh.exe
- %WINDIR%\qnmytwcm\nhg2pwtjhgi
- C:\qnmytwcm\ukauhezn4fva5isgncn.exe
- %WINDIR%\qnmytwcm\nhg2pwtjhgi
- 'ha####nhalflion.net':80
- 'na##top.ru':80
- 'cl#####ortswomen.com':80
- 'ta#####pielenreiten.org':80
- 'si###ypeas.net':80
- 'bu####rmansion.com':80
- http://so####ryducks.com/index.php
- http://sp##tnav.ru/index.php
- DNS ASK so####ryducks.com
- DNS ASK ka#######ayajivayapriroda.ru
- DNS ASK sc#####epuzzlechess.org
- DNS ASK to###tosales.ru
- DNS ASK sp##tnav.ru
- DNS ASK ha####nhalflion.net
- DNS ASK na##top.ru
- DNS ASK pi##asia.cn
- DNS ASK cl#####ortswomen.com
- DNS ASK ta#####pielenreiten.org
- DNS ASK gu##155.cn
- DNS ASK si###ypeas.net
- DNS ASK gr###factory.cn
- DNS ASK ga####liongrass.net
- DNS ASK bu####rmansion.com
- 'C:\qnmytwcm\ukauhezn4fva5isgncn.exe'
- 'C:\qnmytwcm\jpueybh.exe'
- 'C:\qnmytwcm\zzdc4yxqmh.exe' "c:\qnmytwcm\jpueybh.exe"