Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\services\Transfer Publication Socket Discovery Upgrade] 'Start' = '00000002'
- 'C:\dnxfsyg\olvayvbd.exe' "c:\dnxfsyg\axedmspdnpgx.exe"
- 'C:\dnxfsyg\axedmspdnpgx.exe'
- 'C:\dnxfsyg\yel7xgkmjwlviboro.exe'
- C:\dnxfsyg\axedmspdnpgx.exe
- C:\dnxfsyg\olvayvbd.exe
- C:\dnxfsyg\hgbvcls
- %WINDIR%\dnxfsyg\xaer4v
- C:\dnxfsyg\xaer4v
- C:\dnxfsyg\yel7xgkmjwlviboro.exe
- C:\dnxfsyg\olvayvbd.exe
- C:\dnxfsyg\axedmspdnpgx.exe
- C:\dnxfsyg\yel7xgkmjwlviboro.exe
- %WINDIR%\dnxfsyg\xaer4v
- DNS ASK ga####industry.net
- DNS ASK be####industry.net
- DNS ASK be####became.net
- DNS ASK be####contain.net
- DNS ASK ga####became.net
- DNS ASK tr###basket.net
- DNS ASK dn#.##ftncsi.com
- DNS ASK tr###became.net
- DNS ASK st####contain.net
- DNS ASK st####basket.net
- DNS ASK tr####ontain.net
- ClassName: 'Shell_TrayWnd' WindowName: ''