Trojan.MulDrop6.54325

Техническая информация

Для обеспечения автозапуска и распространения:

Создает следующие сервисы:

[<HKLM>\SYSTEM\ControlSet001\Services\service_launcher_core] 'ImagePath' = '"%ALLUSERSPROFILE%\Application Data\MicrosoftCoreLiveUpdateEngine\smss.exe"'
[<HKLM>\SYSTEM\ControlSet001\Services\service_launcher_core] 'Start' = '00000002'

Вредоносные функции:

Запускает на исполнение:

'%ALLUSERSPROFILE%\Application Data\MicrosoftCoreLiveUpdateEngine\smss.exe'
'%ALLUSERSPROFILE%\Application Data\MicrosoftCoreLiveUpdateEngine\smss.exe' SERVICE_INSTALL

Изменения в файловой системе:

Создает следующие файлы:

C:\Documents and Settings\LocalService\Application Data\EH30FCjE16J.txt
C:\Documents and Settings\LocalService\Application Data\THn7.txt
C:\Documents and Settings\LocalService\Application Data\PznGua7oH6D.txt
C:\Documents and Settings\LocalService\Application Data\eleOdPR.txt
C:\Documents and Settings\LocalService\Application Data\zmrakf2os.txt
C:\Documents and Settings\LocalService\Application Data\pNh.txt
C:\Documents and Settings\LocalService\Application Data\Wcy9.txt
C:\Documents and Settings\LocalService\Application Data\HgR.txt
C:\Documents and Settings\LocalService\Application Data\MiZbeiF.txt
C:\Documents and Settings\LocalService\Application Data\aeV.txt
C:\Documents and Settings\LocalService\Application Data\mQ1qp0uLK.txt
C:\Documents and Settings\LocalService\Application Data\vYbb.txt
C:\Documents and Settings\LocalService\Application Data\dOY.txt
C:\Documents and Settings\LocalService\Application Data\yZ5YsNN.txt
C:\Documents and Settings\LocalService\Application Data\FJDIPw9x7F.txt
C:\Documents and Settings\LocalService\Application Data\b5iHF.txt
C:\Documents and Settings\LocalService\Application Data\ZGZUL4aa8.txt
C:\Documents and Settings\LocalService\Application Data\S7yuWv5w.txt
C:\Documents and Settings\LocalService\Application Data\NsizDVlR.txt
C:\Documents and Settings\LocalService\Application Data\VofA.txt
C:\Documents and Settings\LocalService\Application Data\52TP.txt
C:\Documents and Settings\LocalService\Application Data\Da4kW.txt
C:\Documents and Settings\LocalService\Application Data\PSP2cHl.txt
C:\Documents and Settings\LocalService\Application Data\keF1V.txt
C:\Documents and Settings\LocalService\Application Data\ini8kBDi9.txt
C:\Documents and Settings\LocalService\Application Data\9HvAGvJXx.txt
C:\Documents and Settings\LocalService\Application Data\PjzGi8l.txt
C:\Documents and Settings\LocalService\Application Data\eRa0SFih2x.txt
C:\Documents and Settings\LocalService\Application Data\9ugJoY.txt
C:\Documents and Settings\LocalService\Application Data\sZZc6m.txt
C:\Documents and Settings\LocalService\Application Data\pR8dRguTJ6.txt
C:\Documents and Settings\LocalService\Application Data\6VD7a36.txt
C:\Documents and Settings\LocalService\Application Data\7yH6.txt
C:\Documents and Settings\LocalService\Application Data\eOA2M7s.txt
C:\Documents and Settings\LocalService\Application Data\n0YUVe9h0.txt
C:\Documents and Settings\LocalService\Application Data\YK58yAOzKM.txt
C:\Documents and Settings\LocalService\Application Data\6LFnhwPltXu.txt
C:\Documents and Settings\LocalService\Application Data\2Vs.txt
C:\Documents and Settings\LocalService\Application Data\3PvXO.txt
C:\Documents and Settings\LocalService\Application Data\51oAqiioFkJ.txt
C:\Documents and Settings\LocalService\Application Data\bJ2uITr.txt
C:\Documents and Settings\LocalService\Application Data\EGETXffpI.txt
C:\Documents and Settings\LocalService\Application Data\vQ8I1EnPo.txt
C:\Documents and Settings\LocalService\Application Data\SgY.txt
C:\Documents and Settings\LocalService\Application Data\v2o43.txt
C:\Documents and Settings\LocalService\Application Data\Fc6yVpj.txt
C:\Documents and Settings\LocalService\Application Data\x34dhapv.txt
C:\Documents and Settings\LocalService\Application Data\74e.txt
C:\Documents and Settings\LocalService\Application Data\SCE20M.txt
C:\Documents and Settings\LocalService\Application Data\LnX5DPMOS.txt
C:\Documents and Settings\LocalService\Application Data\kOX3soUwfK.txt
C:\Documents and Settings\LocalService\Application Data\dfvOyAdZf.txt
C:\Documents and Settings\LocalService\Application Data\0YlgpZAO.txt
C:\Documents and Settings\LocalService\Application Data\Sw2VD0p63.txt
C:\Documents and Settings\LocalService\Application Data\JdqZ9Wkslan.txt
C:\Documents and Settings\LocalService\Application Data\Js4FaDtf.txt
%APPDATA%\P1FninP0aB.txt
%APPDATA%\DBlS6q.txt
%APPDATA%\eLgD9XDsb.txt
%APPDATA%\FPmNpArh07A.txt
%APPDATA%\QBelx9.txt
%APPDATA%\nMrTWeATDSr.txt
%APPDATA%\8G4v7Q5PO.txt
%APPDATA%\krDZCOAtSm7.txt
%APPDATA%\W0S8cIF.txt
%APPDATA%\kUQdUkTAj.txt
%APPDATA%\BR9OKdTuzm.txt
%APPDATA%\aUijQyHMMLT.txt
%APPDATA%\TR7l9HVOL.txt
%APPDATA%\3dAxDlrsF.txt
%APPDATA%\oGHfQ28.txt
%APPDATA%\UGcQ.txt
%APPDATA%\w1rV.txt
%APPDATA%\0YAgDPrsSW.txt
%APPDATA%\2BCJMIC.txt
%APPDATA%\3IwEyIPRoP.txt
%APPDATA%\jDFX7fcHNxP.txt
%APPDATA%\sz3.txt
%APPDATA%\e2JiR5XR.txt
%APPDATA%\N6YghMem8wn.txt
%APPDATA%\CvHD.txt
%APPDATA%\KFjhHt.txt
%APPDATA%\QOtZmg.txt
%APPDATA%\0BQWA7lT.txt
C:\Documents and Settings\LocalService\Application Data\xuTG0Oba.txt
C:\Documents and Settings\LocalService\Application Data\VaBbHApii.txt
C:\Documents and Settings\LocalService\Application Data\CLSGp3yj.txt
C:\Documents and Settings\LocalService\Application Data\vXc.txt
C:\Documents and Settings\LocalService\Application Data\EgLMn.txt
C:\Documents and Settings\LocalService\Application Data\vknQBSn.txt
C:\Documents and Settings\LocalService\Application Data\6T1so4.txt
C:\Documents and Settings\LocalService\Application Data\5fEyqeP.txt
C:\Documents and Settings\LocalService\Application Data\73r41N.txt
C:\Documents and Settings\LocalService\Application Data\gndLd.txt
C:\Documents and Settings\LocalService\Application Data\HMEjZZQ.txt
C:\Documents and Settings\LocalService\Application Data\eDpNUQJ2rq8.txt
C:\Documents and Settings\LocalService\Application Data\EcSodB.txt
C:\Documents and Settings\LocalService\Application Data\JtjxEptW6P.txt
%APPDATA%\7fWWkmrXq.txt
%APPDATA%\Wt5rLj.txt
%APPDATA%\b42cjO2I3.txt
%APPDATA%\Ys1CU01fWth.txt
%APPDATA%\ajo.txt
%APPDATA%\nDj.txt
%APPDATA%\3yFQCGjjW3A.txt
%APPDATA%\aa5g7ZF.txt
%APPDATA%\9FGDCD.txt
C:\Documents and Settings\LocalService\Application Data\kB9CzL3M.txt
%APPDATA%\7njhrn0D6U6.txt
%APPDATA%\LksBp.txt
%APPDATA%\7B6rMLapJU.txt
%APPDATA%\20fatky.txt
C:\Documents and Settings\LocalService\Application Data\CPJsbwFdVa.txt
C:\Documents and Settings\LocalService\Application Data\y9CQZ7x0GY.txt
C:\Documents and Settings\LocalService\Application Data\lf93E0mZWVM.txt
C:\Documents and Settings\LocalService\Application Data\cQAbTf5CiR.txt
C:\Documents and Settings\LocalService\Application Data\2fSLGul.txt
C:\Documents and Settings\LocalService\Application Data\67E6Qo8.txt
C:\Documents and Settings\LocalService\Application Data\VS9on9.txt
C:\Documents and Settings\LocalService\Application Data\3BgPAYmoZCA.txt
C:\Documents and Settings\LocalService\Application Data\NSJOOPP.txt
C:\Documents and Settings\LocalService\Application Data\uoG.txt
C:\Documents and Settings\LocalService\Application Data\aEPjWav.txt
C:\Documents and Settings\LocalService\Application Data\1o0XB6uD9zA.txt
C:\Documents and Settings\LocalService\Application Data\99KARBkcL.txt
C:\Documents and Settings\LocalService\Application Data\h0R4KdcOdgm.txt
C:\Documents and Settings\LocalService\Application Data\5uVqv.txt
C:\Documents and Settings\LocalService\Application Data\GfNJe.txt
C:\Documents and Settings\LocalService\Application Data\1JC.txt
C:\Documents and Settings\LocalService\Application Data\wXjnMFPyk.txt
C:\Documents and Settings\LocalService\Application Data\yjUnrgcTO.txt
C:\Documents and Settings\LocalService\Application Data\VxXL7UVB0SD.txt
C:\Documents and Settings\LocalService\Application Data\EWA.txt
C:\Documents and Settings\LocalService\Application Data\DWSoZ9Er.txt
C:\Documents and Settings\LocalService\Application Data\SnQ.txt
C:\Documents and Settings\LocalService\Application Data\Kqf80PKWQf.txt
C:\Documents and Settings\LocalService\Application Data\ddySEPKMjS.txt
C:\Documents and Settings\LocalService\Application Data\XieFkh4YPf.txt
C:\Documents and Settings\LocalService\Application Data\Ez7ENIszi.txt
C:\Documents and Settings\LocalService\Application Data\hfwh5.txt
C:\Documents and Settings\LocalService\Application Data\c3ycct7Ap.txt
C:\Documents and Settings\LocalService\Application Data\lFKm.txt
C:\Documents and Settings\LocalService\Application Data\48mnUaleZ.txt
C:\Documents and Settings\LocalService\Application Data\qRVxdmHqfFM.txt
C:\Documents and Settings\LocalService\Application Data\ICPoQxl.txt
C:\Documents and Settings\LocalService\Application Data\J2pS78TD.txt
C:\Documents and Settings\LocalService\Application Data\l4Piic6zgr.txt
C:\Documents and Settings\LocalService\Application Data\De6G353.txt
C:\Documents and Settings\LocalService\Application Data\hlt.txt
C:\Documents and Settings\LocalService\Application Data\E2qIe.txt
C:\Documents and Settings\LocalService\Application Data\RjpqUdt.txt
C:\Documents and Settings\LocalService\Application Data\qvyaph9SoB9.txt
C:\Documents and Settings\LocalService\Application Data\iyISExR998M.txt
C:\Documents and Settings\LocalService\Application Data\B9bo9fk2ed.txt
C:\Documents and Settings\LocalService\Application Data\KT2BU.txt
C:\Documents and Settings\LocalService\Application Data\oCs.txt
C:\Documents and Settings\LocalService\Application Data\JiaOs2frtkq.txt
C:\Documents and Settings\LocalService\Application Data\dInutG0o1wU.txt
C:\Documents and Settings\LocalService\Application Data\AU7a.txt
C:\Documents and Settings\LocalService\Application Data\KOsi.txt
C:\Documents and Settings\LocalService\Application Data\kPGqMp2.txt
C:\Documents and Settings\LocalService\Application Data\4t9lYnQC.txt
C:\Documents and Settings\LocalService\Application Data\m1EqQ0pN.txt
C:\Documents and Settings\LocalService\Application Data\lFtAYU5wX.txt
C:\Documents and Settings\LocalService\Application Data\Mf5j.txt
C:\Documents and Settings\LocalService\Application Data\RXzn.txt
C:\Documents and Settings\LocalService\Application Data\wB5YS3J.txt
C:\Documents and Settings\LocalService\Application Data\TT4w.txt
C:\Documents and Settings\LocalService\Application Data\4WH5duGPb.txt
C:\Documents and Settings\LocalService\Application Data\ovyFB5.txt
C:\Documents and Settings\LocalService\Application Data\uZa0e7YY.txt
C:\Documents and Settings\LocalService\Application Data\jwAa.txt
C:\Documents and Settings\LocalService\Application Data\8S3.txt
C:\Documents and Settings\LocalService\Application Data\dKvIoXRT7Q.txt
C:\Documents and Settings\LocalService\Application Data\6B3sSi.txt
C:\Documents and Settings\LocalService\Application Data\ALWwuJurJh.txt
C:\Documents and Settings\LocalService\Application Data\Uk5k5.txt
C:\Documents and Settings\LocalService\Application Data\aR21MgAsui4.txt
C:\Documents and Settings\LocalService\Application Data\VrD3xz9QNV.txt
C:\Documents and Settings\LocalService\Application Data\hwz.txt
C:\Documents and Settings\LocalService\Application Data\Tog3xWSdIf.txt
C:\Documents and Settings\LocalService\Application Data\9VyTpz7rj6S.txt
C:\Documents and Settings\LocalService\Application Data\0haD.txt
C:\Documents and Settings\LocalService\Application Data\bqO.txt
C:\Documents and Settings\LocalService\Application Data\1f5t.txt
C:\Documents and Settings\LocalService\Application Data\FHKFqNKy3eJ.txt
C:\Documents and Settings\LocalService\Application Data\IJWPx1vko1X.txt
C:\Documents and Settings\LocalService\Application Data\5QW6e.txt
C:\Documents and Settings\LocalService\Application Data\j9WSNQEjT.txt
C:\Documents and Settings\LocalService\Application Data\OrIljEOCl.txt
C:\Documents and Settings\LocalService\Application Data\2nP.txt
C:\Documents and Settings\LocalService\Application Data\2gO4dqWLD.txt
C:\Documents and Settings\LocalService\Application Data\dbxN.txt
C:\Documents and Settings\LocalService\Application Data\qTRxbV75.txt
C:\Documents and Settings\LocalService\Application Data\NpdTCI7KDvH.txt
C:\Documents and Settings\LocalService\Application Data\8iW0hOS1.txt
%ALLUSERSPROFILE%\Application Data\MicrosoftCoreLiveUpdateEngine\serial.sn
C:\Documents and Settings\LocalService\Application Data\xrLOuoAs.txt
C:\Documents and Settings\LocalService\Application Data\K8jHor56.txt
C:\Documents and Settings\LocalService\Application Data\wh6jh9.txt
C:\Documents and Settings\LocalService\Application Data\EQWhovG.txt
C:\Documents and Settings\LocalService\Application Data\ipgwqPH9.txt
C:\Documents and Settings\LocalService\Application Data\v4fmH.txt
C:\Documents and Settings\LocalService\Application Data\L1PG9.txt
C:\Documents and Settings\LocalService\Application Data\R0h3n94MvG.txt
C:\Documents and Settings\LocalService\Application Data\BsP.txt
C:\Documents and Settings\LocalService\Application Data\gQBA9.txt
C:\Documents and Settings\LocalService\Application Data\xZsy1SNei.txt
C:\Documents and Settings\LocalService\Application Data\5825p.txt
C:\Documents and Settings\LocalService\Application Data\rSDo.txt
C:\Documents and Settings\LocalService\Application Data\M8AE3nLH.txt
C:\Documents and Settings\LocalService\Application Data\Lqu.txt
C:\Documents and Settings\LocalService\Application Data\owGWHR.txt
C:\Documents and Settings\LocalService\Application Data\sIl.txt
C:\Documents and Settings\LocalService\Application Data\d4egDKxW.txt
C:\Documents and Settings\LocalService\Application Data\oKax1RNw.txt
C:\Documents and Settings\LocalService\Application Data\JRO.txt
C:\Documents and Settings\LocalService\Application Data\vBNO.txt
C:\Documents and Settings\LocalService\Application Data\x8qMmN9sxoO.txt
C:\Documents and Settings\LocalService\Application Data\jx3bwBOh3.txt
%ALLUSERSPROFILE%\Application Data\MicrosoftCoreLiveUpdateEngine\smss.InstallState
C:\Documents and Settings\LocalService\Application Data\k9FqZmyYwh.txt
C:\Documents and Settings\LocalService\Application Data\VJY3M6.txt
C:\Documents and Settings\LocalService\Application Data\bW0M3rQ0.txt
C:\Documents and Settings\LocalService\Application Data\4LEBTLG4fgS.txt
%APPDATA%\7FlVNghe.txt
%APPDATA%\QjfEJ6vOU7M.txt
%APPDATA%\fKqWOMhE.txt
%APPDATA%\rMErJdCQzO.txt
%APPDATA%\wq8jl.txt
%APPDATA%\0UzL46cEe.txt
%APPDATA%\JmG3bN.txt
%APPDATA%\oMn.txt
%APPDATA%\Q9cC.txt
%APPDATA%\0UCMsIzFwJ.txt
%APPDATA%\IEyyHIWr.txt
%APPDATA%\ElWWG6l9e.txt
%APPDATA%\05IXJef5.txt
%APPDATA%\2BEgyBpuK0.txt
%APPDATA%\mkFF39583u.txt
%APPDATA%\6VD7a36.txt
%APPDATA%\cPc4iXQ.txt
%APPDATA%\6aWeh6646.txt
%APPDATA%\n0YUVe9h0.txt
%APPDATA%\dfvOyAdZf.txt
%APPDATA%\7yH6.txt
%APPDATA%\eOA2M7s.txt
%APPDATA%\nUrPO.txt
%APPDATA%\5uAJM24Xla.txt
%APPDATA%\CPUq59s.txt
%APPDATA%\Ns3Ds1.txt
%APPDATA%\K8PTdTiGL.txt
%APPDATA%\Cb3Qx6c.txt
%APPDATA%\H4Okn.txt
%APPDATA%\JQ9W599sp.txt
%APPDATA%\Mv2IjQVR.txt
%APPDATA%\AxEY.txt
%APPDATA%\M7EY.txt
%APPDATA%\HbR.txt
%APPDATA%\XMHn.txt
%ALLUSERSPROFILE%\Application Data\MicrosoftCoreLiveUpdateEngine\smss.exe
%APPDATA%\ULq.txt
%APPDATA%\fV78EsRn.txt
%APPDATA%\5bBp6P570.txt
%APPDATA%\AtD7XO.txt
%APPDATA%\v1cXLChwhtq.txt
%APPDATA%\oTBtpw5g4.txt
%APPDATA%\vFgICrbu.txt
%APPDATA%\mWMq83jSLk.txt
%APPDATA%\sqr7REwP6.txt
%APPDATA%\laK.txt
%APPDATA%\abqZd7Z.txt
%APPDATA%\cJf6MvFiJD.txt
%APPDATA%\paBNu2PMGV.txt
%APPDATA%\YaoZqpJTJm.txt
%APPDATA%\eQCL58Rk.txt
%APPDATA%\o5xhAGdedAT.txt
%APPDATA%\nhahAdJ.txt
%APPDATA%\Jjo8z.txt
%APPDATA%\M8Frm.txt
%APPDATA%\ZiExfdtRL.txt
%APPDATA%\ARb.txt
%APPDATA%\S7yuWv5w.txt
%APPDATA%\FJDIPw9x7F.txt
%APPDATA%\b5iHF.txt
%APPDATA%\52TP.txt
%APPDATA%\gndLd.txt
%APPDATA%\NsizDVlR.txt
%APPDATA%\VofA.txt
%APPDATA%\ini8kBDi9.txt
%APPDATA%\Da4kW.txt
%APPDATA%\PSP2cHl.txt
%APPDATA%\eRa0SFih2x.txt
%APPDATA%\ZGZUL4aa8.txt
%APPDATA%\9HvAGvJXx.txt
%APPDATA%\PjzGi8l.txt
%APPDATA%\vXc.txt
%APPDATA%\xuTG0Oba.txt
%APPDATA%\VaBbHApii.txt
%APPDATA%\6T1so4.txt
%APPDATA%\kB9CzL3M.txt
%APPDATA%\EgLMn.txt
%APPDATA%\vknQBSn.txt
%APPDATA%\HMEjZZQ.txt
%APPDATA%\5fEyqeP.txt
%APPDATA%\73r41N.txt
%APPDATA%\JtjxEptW6P.txt
%APPDATA%\CLSGp3yj.txt
%APPDATA%\eDpNUQJ2rq8.txt
%APPDATA%\EcSodB.txt
%APPDATA%\Fc6yVpj.txt
%APPDATA%\vQ8I1EnPo.txt
%APPDATA%\SgY.txt
%APPDATA%\SCE20M.txt
%APPDATA%\aeV.txt
%APPDATA%\x34dhapv.txt
%APPDATA%\74e.txt
%APPDATA%\0YlgpZAO.txt
%APPDATA%\LnX5DPMOS.txt
%APPDATA%\kOX3soUwfK.txt
%APPDATA%\Js4FaDtf.txt
%APPDATA%\v2o43.txt
%APPDATA%\Sw2VD0p63.txt
%APPDATA%\JdqZ9Wkslan.txt
%APPDATA%\eleOdPR.txt
%APPDATA%\EH30FCjE16J.txt
%APPDATA%\THn7.txt
%APPDATA%\Wcy9.txt
%APPDATA%\keF1V.txt
%APPDATA%\zmrakf2os.txt
%APPDATA%\pNh.txt
%APPDATA%\mQ1qp0uLK.txt
%APPDATA%\HgR.txt
%APPDATA%\MiZbeiF.txt
%APPDATA%\yZ5YsNN.txt
%APPDATA%\PznGua7oH6D.txt
%APPDATA%\vYbb.txt
%APPDATA%\dOY.txt
%APPDATA%\nlRwQjU46T.txt
%APPDATA%\G9ktMycxCwu.txt
%APPDATA%\8DXbLHKkM.txt
%APPDATA%\cWtJZ.txt
%APPDATA%\ZLH.txt
%APPDATA%\eh21rg7Z3.txt
%ALLUSERSPROFILE%\Application Data\MicrosoftCoreLiveUpdateEngine\smss.InstallLog
%APPDATA%\LpYnmlpm.txt
%APPDATA%\3zWaoq.txt
%APPDATA%\wSvi3Q.txt
%APPDATA%\5ZfMONfR.txt
%APPDATA%\Ilk.txt
%APPDATA%\YdF5D8PRP5N.txt
%APPDATA%\b0hrKn3o.txt
%APPDATA%\I4BIUmyOf.txt
%APPDATA%\3VLXldbY1k.txt
%APPDATA%\0v1Zjvdwd.txt
%APPDATA%\C3TbeK.txt
%APPDATA%\Z6hSFa.txt
%APPDATA%\66rNjL6sU.txt
%APPDATA%\ujvj.txt
%APPDATA%\9B6h.txt
%APPDATA%\Liaa.txt
%APPDATA%\btW.txt
%APPDATA%\9SMq.txt
%APPDATA%\ButzEzDIj.txt
%APPDATA%\i8ApFtw.txt
%APPDATA%\wnnlPZFG.txt
%APPDATA%\NJbt8VAMS.txt
%APPDATA%\LoHyzjfO.txt
%APPDATA%\YMoOdZlau.txt
%APPDATA%\l0ntkeI.txt
%APPDATA%\T03dEly.txt
%APPDATA%\T4UCqS4g.txt
%APPDATA%\irvkhV.txt
%APPDATA%\EsOMjNVSPB6.txt
%APPDATA%\Hrcrj9Lgn.txt
%APPDATA%\nt4w2.txt
%APPDATA%\SpF5PTpo.txt
%APPDATA%\akx.txt
%APPDATA%\cbDesmmuE9.txt
%APPDATA%\ihZvY72lio3.txt
%APPDATA%\EDnv.txt
%APPDATA%\lhOzp33.txt
%APPDATA%\jmDxjcUJ4W.txt
%APPDATA%\35K8WP7.txt
%APPDATA%\rhoNj.txt
%APPDATA%\EiZ3zk6PK.txt
%APPDATA%\iwfxdJU5.txt
%APPDATA%\Gmbv99Dy.txt
%APPDATA%\c5HNLf.txt
%APPDATA%\KQoKCmTSd.txt
%APPDATA%\Q2R4UXh1kV.txt
%APPDATA%\cPjO1JS3.txt
%APPDATA%\TRSR.txt
%APPDATA%\OPpfq99.txt
%APPDATA%\ID9WaD.txt
%APPDATA%\vHrrRWcp9.txt
%APPDATA%\wb5wXh6XYt.txt
%APPDATA%\EWk.txt
%APPDATA%\Jaxg91xor.txt
%APPDATA%\IoI48J.txt
%APPDATA%\K9jsNA8.txt
%APPDATA%\bbiFN54y.txt
%APPDATA%\S1Dqwgw4N.txt
%APPDATA%\N0AFIxyXz0o.txt
%APPDATA%\8Bfi7.txt
%APPDATA%\b5SwO5X8OQ.txt
%APPDATA%\iQMZ2avu.txt
%APPDATA%\4KH.txt
%APPDATA%\kOr.txt
%APPDATA%\MPmEtLLl.txt
%APPDATA%\8SbUzwlP.txt
%APPDATA%\zvqK.txt
%APPDATA%\YdQBlFgNn.txt
%APPDATA%\OvnV.txt
%APPDATA%\78l7igv.txt
%APPDATA%\sxNeEbIo.txt
%APPDATA%\lv5.txt
%APPDATA%\1P4ZBbh.txt
%APPDATA%\fNX.txt
%APPDATA%\ZZVvCD.txt
%APPDATA%\TodLKeidGw.txt
%APPDATA%\hyprtyaNrPg.txt
%APPDATA%\j99.txt
%APPDATA%\1tK.txt
%APPDATA%\EzOCS1.txt
%APPDATA%\UJDP7.txt
%APPDATA%\rwIDVvNg.txt
%APPDATA%\u1VCXBs4n2E.txt
%APPDATA%\kHsm.txt
%APPDATA%\Db8Ah4FU0Xq.txt
%APPDATA%\AhWCNBbQAn.txt
%APPDATA%\F077q0pJ.txt
%APPDATA%\hJZC.txt
%APPDATA%\YwtzpJWvjs.txt
%APPDATA%\tNbvGysOtS3.txt
%APPDATA%\gsg98.txt
%APPDATA%\G9Sq0RN2v.txt
%APPDATA%\qoOsM.txt
%APPDATA%\trWQl37.txt
%APPDATA%\c0RnSjxD.txt
%APPDATA%\Exb9y83s.txt
%APPDATA%\zFC7BmNEOwM.txt
%APPDATA%\ZkTV.txt
%APPDATA%\ZPQb.txt
%APPDATA%\KnJ.txt
%APPDATA%\VplXL8.txt
%APPDATA%\kRv.txt
%APPDATA%\ZkOf4KCus.txt
%APPDATA%\Z0Sm9Osi.txt
%APPDATA%\MBMiVjvlA.txt
%APPDATA%\UKyhKMjl3Ie.txt

Присваивает атрибут 'скрытый' для следующих файлов:

%ALLUSERSPROFILE%\Application Data\MicrosoftCoreLiveUpdateEngine\smss.exe

Сетевая активность:

UDP:

DNS ASK Vd#.com
DNS ASK Zh##JE.com
DNS ASK 9d##uZV.com
DNS ASK 6E###0IRiOk.com
DNS ASK li####date.mooo.com
DNS ASK sU##8oZ.com
DNS ASK Cw##fmM.com
DNS ASK nY##.com
DNS ASK Pi#.com
DNS ASK 0D#.com
DNS ASK Fp###IeTSes.com
DNS ASK UA#.com
DNS ASK kV###WqE.com
DNS ASK qN###lk6.com
DNS ASK Cq###JWAIg.com
DNS ASK tX###r8foVR.com
DNS ASK py##8O.com
DNS ASK xH##SZ0.com
DNS ASK Jj##Fep.com
DNS ASK mJ##hl2.com
DNS ASK dZ###0wPev.com
DNS ASK 0w###2DXu.com
DNS ASK xV###ml2jCO.com
DNS ASK vV##.com
DNS ASK YQ###Chc.com
DNS ASK CV###a4PiwN.com
DNS ASK h6###0Tv.com
DNS ASK LY##.com
DNS ASK n2###DxXD.com
DNS ASK k4###tUsX.com
DNS ASK 2a##mL2.com
DNS ASK 8r##.com
DNS ASK 1x###tm2h.com
DNS ASK dI###xPtp0Q.com
DNS ASK jQ##AMX.com
DNS ASK j4###wmS.com
DNS ASK XT###ChThkA.com
DNS ASK jh##Kb5.com
DNS ASK 9s##O.com
DNS ASK cb##42.com
DNS ASK Mx###EwW.com
DNS ASK U2###Ybi.com
DNS ASK 7d##Uf2.com
DNS ASK HQ##PY.com
DNS ASK gI##.com
DNS ASK nc##TuJ.com
DNS ASK by###7y5LW.com
DNS ASK Fk##.com
DNS ASK ZW###GG4.com
DNS ASK Ko###I9hVV.com
DNS ASK oh##N9.com
DNS ASK aY###XvGX.com
DNS ASK x6###6VTMB7.com
DNS ASK Ra##0.com
DNS ASK eg###CoKeg.com
DNS ASK EQ##.com
DNS ASK o1###98w90Y.com
DNS ASK jG###K2tMZ.com
DNS ASK Os###iX6D.com
DNS ASK 0y##.com
DNS ASK lr##5md.com
DNS ASK oo#.com
DNS ASK qw###lxQ.com
DNS ASK Gr###YJXYZM.com
DNS ASK Hn###eme.com
DNS ASK Qt##h3.com
DNS ASK gd###zYiE.com
DNS ASK z5##w.com
DNS ASK 6e##.com
DNS ASK aq###zko.com
DNS ASK IW##a.com
DNS ASK F3##nZ.com
DNS ASK KP##GDh.com
DNS ASK 6o##5m.com
DNS ASK N2###hw4k9B.com
DNS ASK pT##9l.com
DNS ASK ep##.com
DNS ASK f7###K7sYtj.com
DNS ASK fV###gPafSF.com
DNS ASK qp##.com
DNS ASK 1q###AxXSJ.com
DNS ASK TV###uWI.com
DNS ASK lH###aAotA.com
DNS ASK p8##.com
DNS ASK rF###euv.com
DNS ASK sh###45fq.com
DNS ASK F1###EeQQ5.com
DNS ASK Hm###cJ92T.com
DNS ASK he##Zn0.com
DNS ASK 3d##rH.com
DNS ASK Jh###GqUe.com
DNS ASK M5###YmW.com
DNS ASK H7###w2DLJr.com
DNS ASK cQ##.com
DNS ASK ae##n.com
DNS ASK Dz###PRfhE.com
DNS ASK 38##VK.com
DNS ASK DW##rD.com
DNS ASK Wv##.com
DNS ASK 4m###21Z.com
DNS ASK k1##6R.com
DNS ASK fo###jvc.com
DNS ASK Hf###AilLJ.com
DNS ASK YM##G8.com
DNS ASK MC###5WAu.com
DNS ASK hO###e2UsQI.com
DNS ASK qh#.com
DNS ASK t1##ev.com
DNS ASK gR#.com
DNS ASK 7N##.com
DNS ASK 8E##RMt.com
DNS ASK Qd###sdmQlR.com
DNS ASK 9I###ouCREl.com
DNS ASK WT###xERiF3.com
DNS ASK fN###vMt.com
DNS ASK tk##.com
DNS ASK zR###bMve.com
DNS ASK Sc#.com
DNS ASK ZU##2F.com
DNS ASK wU###NrYEDM.com
DNS ASK dd###YpR.com
DNS ASK kt#.com
DNS ASK bL#.com
DNS ASK oI#.com
DNS ASK dh##Rp6.com
DNS ASK 7W###hW36.com
DNS ASK Wv##By.com
DNS ASK AT##aV.com
DNS ASK vX##gwM.com
DNS ASK 3V###OQq.com
DNS ASK 5I###BfVtVz.com
DNS ASK Tp###eyhi.com
DNS ASK 9H###ZYh6.com
DNS ASK oW###D6AzVA.com
DNS ASK yp##B.com
DNS ASK KU###huHhh.com
DNS ASK zY###yr8j6.com
DNS ASK E0###vduKiz.com
DNS ASK Tp#.com
DNS ASK 2T###ykf8.com
DNS ASK lT##B.com
DNS ASK vT##.com
DNS ASK nC##hp1.com
DNS ASK 40###BlVt4.com
DNS ASK ZT##.com
DNS ASK Sh##zn.com
DNS ASK 7g###KUnT.com
DNS ASK 4e###bKKzC.com
DNS ASK I9###mIbElr.com
DNS ASK mE###Tavo.com
DNS ASK no#.com
DNS ASK Sl###k6TJcH.com

Технологии

Термины

Обучение и просвещение

Мифы

Техническая информация

Рекомендации по лечению

Демо бесплатно на 14 дней