Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\services\Presentation Defragmenter AuthIP PNRP Power] 'Start' = '00000002'
- 'C:\rlhfhvbyicjn\akfssotdpd.exe' "c:\rlhfhvbyicjn\rnbleonwynml.exe"
- 'C:\rlhfhvbyicjn\rnbleonwynml.exe'
- 'C:\rlhfhvbyicjn\cgnanh43dhnctxvmrwvu.exe'
- C:\rlhfhvbyicjn\rnbleonwynml.exe
- C:\rlhfhvbyicjn\akfssotdpd.exe
- C:\rlhfhvbyicjn\gpkwhx
- %WINDIR%\rlhfhvbyicjn\kzqsjzwqzq
- C:\rlhfhvbyicjn\kzqsjzwqzq
- C:\rlhfhvbyicjn\cgnanh43dhnctxvmrwvu.exe
- C:\rlhfhvbyicjn\akfssotdpd.exe
- C:\rlhfhvbyicjn\rnbleonwynml.exe
- C:\rlhfhvbyicjn\cgnanh43dhnctxvmrwvu.exe
- %WINDIR%\rlhfhvbyicjn\kzqsjzwqzq
- DNS ASK th####illion.net
- DNS ASK pr####tpleasure.net
- DNS ASK pr####tmillion.net
- DNS ASK pr####twhite.net
- DNS ASK th###white.net
- DNS ASK dn#.##ftncsi.com
- DNS ASK cl###garden.net
- DNS ASK th###toward.net
- DNS ASK th####leasure.net
- DNS ASK pr####ttoward.net
- ClassName: 'Shell_TrayWnd' WindowName: ''