Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\services\Center CardSpace Access Launcher Registry] 'Start' = '00000002'
- 'C:\phhyxup\iujxbvzsu.exe' "c:\phhyxup\ypiumlzfn.exe"
- 'C:\phhyxup\ypiumlzfn.exe'
- 'C:\phhyxup\apiaf8dc4zlekvlwftlx.exe'
- C:\phhyxup\ypiumlzfn.exe
- C:\phhyxup\iujxbvzsu.exe
- C:\phhyxup\klrmwedvgxq
- %WINDIR%\phhyxup\zepnbm
- C:\phhyxup\zepnbm
- C:\phhyxup\apiaf8dc4zlekvlwftlx.exe
- C:\phhyxup\iujxbvzsu.exe
- C:\phhyxup\ypiumlzfn.exe
- C:\phhyxup\apiaf8dc4zlekvlwftlx.exe
- %WINDIR%\phhyxup\zepnbm
- DNS ASK su####president.net
- DNS ASK wi####president.net
- DNS ASK wi####caught.net
- DNS ASK ef####strong.net
- DNS ASK su####caught.net
- DNS ASK su####trouble.net
- DNS ASK dn#.##ftncsi.com
- DNS ASK th###caught.net
- DNS ASK wi####strong.net
- DNS ASK wi####trouble.net
- DNS ASK su####strong.net
- ClassName: 'Shell_TrayWnd' WindowName: ''