Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\services\Filtering Controls Extensible] 'Start' = '00000002'
- 'C:\dkgfmifggnyargl\sihfdnpxdrp.exe' "c:\dkgfmifggnyargl\rueilkqj.exe"
- 'C:\dkgfmifggnyargl\rueilkqj.exe'
- 'C:\dkgfmifggnyargl\ej7zm4rvcnyhhxf.exe'
- C:\dkgfmifggnyargl\rueilkqj.exe
- C:\dkgfmifggnyargl\sihfdnpxdrp.exe
- C:\dkgfmifggnyargl\hjwpvbazls
- %WINDIR%\dkgfmifggnyargl\gpdlwdfjz
- C:\dkgfmifggnyargl\gpdlwdfjz
- C:\dkgfmifggnyargl\ej7zm4rvcnyhhxf.exe
- C:\dkgfmifggnyargl\sihfdnpxdrp.exe
- C:\dkgfmifggnyargl\rueilkqj.exe
- C:\dkgfmifggnyargl\ej7zm4rvcnyhhxf.exe
- %WINDIR%\dkgfmifggnyargl\gpdlwdfjz
- DNS ASK le###ranger.net
- DNS ASK he###nwheat.net
- DNS ASK he###nanger.net
- DNS ASK he####always.net
- DNS ASK le####always.net
- DNS ASK or###forest.net
- DNS ASK re####ealways.net
- DNS ASK dn#.##ftncsi.com
- DNS ASK le###rwheat.net
- DNS ASK re####eforest.net
- ClassName: 'Shell_TrayWnd' WindowName: ''