Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\services\Multimedia Netlogon Receiver] 'Start' = '00000002'
- 'C:\ezyclokbiitrbnp\scqvaqqn.exe' "c:\ezyclokbiitrbnp\suxuffgap.exe"
- 'C:\ezyclokbiitrbnp\suxuffgap.exe'
- 'C:\ezyclokbiitrbnp\bs801aspgxeuoisg.exe'
- C:\ezyclokbiitrbnp\suxuffgap.exe
- C:\ezyclokbiitrbnp\scqvaqqn.exe
- C:\ezyclokbiitrbnp\m1fxhkvdrfy
- %WINDIR%\ezyclokbiitrbnp\abyj52cu
- C:\ezyclokbiitrbnp\abyj52cu
- C:\ezyclokbiitrbnp\bs801aspgxeuoisg.exe
- C:\ezyclokbiitrbnp\scqvaqqn.exe
- C:\ezyclokbiitrbnp\suxuffgap.exe
- C:\ezyclokbiitrbnp\bs801aspgxeuoisg.exe
- %WINDIR%\ezyclokbiitrbnp\abyj52cu
- DNS ASK qu###became.net
- DNS ASK se####industry.net
- DNS ASK se####became.net
- DNS ASK se####contain.net
- DNS ASK qu####ontain.net
- DNS ASK qu####ndustry.net
- DNS ASK br####ontain.net
- DNS ASK fl####ontain.net
- DNS ASK dn#.##ftncsi.com
- DNS ASK br###basket.net
- DNS ASK fl###basket.net
- ClassName: 'Shell_TrayWnd' WindowName: ''