Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\services\NGEN Log Network Credential] 'Start' = '00000002'
- 'C:\rbzbbdev\fwjwhamxan.exe' "c:\rbzbbdev\fxbgklnapil.exe"
- 'C:\rbzbbdev\fxbgklnapil.exe'
- 'C:\rbzbbdev\ms7lwzzlhi5zmfdg.exe'
- C:\rbzbbdev\fxbgklnapil.exe
- C:\rbzbbdev\fwjwhamxan.exe
- C:\rbzbbdev\lp6harb
- %WINDIR%\rbzbbdev\mlnlrhazmcz
- C:\rbzbbdev\mlnlrhazmcz
- C:\rbzbbdev\ms7lwzzlhi5zmfdg.exe
- C:\rbzbbdev\fwjwhamxan.exe
- C:\rbzbbdev\fxbgklnapil.exe
- C:\rbzbbdev\ms7lwzzlhi5zmfdg.exe
- %WINDIR%\rbzbbdev\mlnlrhazmcz
- DNS ASK se####neither.net
- DNS ASK qu####either.net
- DNS ASK qu###system.net
- DNS ASK qu###trust.net
- DNS ASK se####system.net
- DNS ASK dn#.##ftncsi.com
- DNS ASK fl###trust.net
- DNS ASK br###trust.net
- DNS ASK se###nhonor.net
- DNS ASK qu###honor.net
- ClassName: 'Shell_TrayWnd' WindowName: ''