Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\services\Tablet Scheduler Firewall] 'Start' = '00000002'
- 'C:\eolcelir\xbktpuzrq.exe' "c:\eolcelir\pluvdadkklv.exe"
- 'C:\eolcelir\pluvdadkklv.exe'
- 'C:\eolcelir\jl8qkdcrowqxdw.exe'
- C:\eolcelir\pluvdadkklv.exe
- C:\eolcelir\xbktpuzrq.exe
- C:\eolcelir\ky2jpubl7i
- %WINDIR%\eolcelir\sclnnbe70vvq
- C:\eolcelir\sclnnbe70vvq
- C:\eolcelir\jl8qkdcrowqxdw.exe
- C:\eolcelir\xbktpuzrq.exe
- C:\eolcelir\pluvdadkklv.exe
- C:\eolcelir\jl8qkdcrowqxdw.exe
- %WINDIR%\eolcelir\sclnnbe70vvq
- DNS ASK co####ehonor.net
- DNS ASK ch###honor.net
- DNS ASK ch####either.net
- DNS ASK ch###system.net
- DNS ASK co####eneither.net
- DNS ASK pr####ttrust.net
- DNS ASK th###system.net
- DNS ASK pr####tneither.net
- DNS ASK dn#.##ftncsi.com
- DNS ASK th###trust.net
- DNS ASK pr####tsystem.net
- ClassName: 'Shell_TrayWnd' WindowName: ''