Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\services\HomeGroup Topology Client iSCSI DCOM] 'Start' = '00000002'
- 'C:\ucgvnasvfzhjbu\nhdgqwqaks.exe' "c:\ucgvnasvfzhjbu\heglecnayamm.exe"
- 'C:\ucgvnasvfzhjbu\heglecnayamm.exe'
- 'C:\ucgvnasvfzhjbu\qik8dkdjxobkqe8nsg.exe'
- C:\ucgvnasvfzhjbu\heglecnayamm.exe
- C:\ucgvnasvfzhjbu\nhdgqwqaks.exe
- C:\ucgvnasvfzhjbu\bnvnnym1x9s
- %WINDIR%\ucgvnasvfzhjbu\lsmaqhl
- C:\ucgvnasvfzhjbu\lsmaqhl
- C:\ucgvnasvfzhjbu\qik8dkdjxobkqe8nsg.exe
- C:\ucgvnasvfzhjbu\nhdgqwqaks.exe
- C:\ucgvnasvfzhjbu\heglecnayamm.exe
- C:\ucgvnasvfzhjbu\qik8dkdjxobkqe8nsg.exe
- %WINDIR%\ucgvnasvfzhjbu\lsmaqhl
- DNS ASK re####erdevice.net
- DNS ASK wo###device.net
- DNS ASK wo###before.net
- DNS ASK jo####yfound.net
- DNS ASK re####erbefore.net
- DNS ASK re#####rlanguage.net
- DNS ASK wo###settle.net
- DNS ASK in####sebefore.net
- DNS ASK dn#.##ftncsi.com
- DNS ASK wo####anguage.net
- DNS ASK re####ersettle.net
- ClassName: 'Shell_TrayWnd' WindowName: ''