Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\services\Debugger SNMP SPP File Launcher Profile] 'Start' = '00000002'
- 'C:\lqosvzpjuegpmga\ddevtedhfvk.exe' "c:\lqosvzpjuegpmga\uoxviakfwd.exe"
- 'C:\lqosvzpjuegpmga\uoxviakfwd.exe'
- 'C:\lqosvzpjuegpmga\oyhds9fvoeevlbifz.exe'
- C:\lqosvzpjuegpmga\uoxviakfwd.exe
- C:\lqosvzpjuegpmga\ddevtedhfvk.exe
- C:\lqosvzpjuegpmga\gbbtzzoys7b
- %WINDIR%\lqosvzpjuegpmga\pzkbenqypf
- C:\lqosvzpjuegpmga\pzkbenqypf
- C:\lqosvzpjuegpmga\oyhds9fvoeevlbifz.exe
- C:\lqosvzpjuegpmga\ddevtedhfvk.exe
- C:\lqosvzpjuegpmga\uoxviakfwd.exe
- C:\lqosvzpjuegpmga\oyhds9fvoeevlbifz.exe
- %WINDIR%\lqosvzpjuegpmga\pzkbenqypf
- DNS ASK ge####strong.net
- DNS ASK he###strong.net
- DNS ASK he####rouble.net
- DNS ASK he####resident.net
- DNS ASK ge####trouble.net
- DNS ASK he####caught.net
- DNS ASK le####president.net
- DNS ASK he####trouble.net
- DNS ASK dn#.##ftncsi.com
- DNS ASK le####caught.net
- DNS ASK he####president.net
- ClassName: 'Shell_TrayWnd' WindowName: ''