Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Control\Print\Providers\pfyfucimbeqwycv] 'Name' = '%TEMP%\5.tmp'
- %TEMP%\Gi.exe
- %TEMP%\ic1.exe
- %TEMP%\_tbp.exe
- %TEMP%\E4U.exe
- %TEMP%\converter7.exe
- %TEMP%\7za.exe x %TEMP%\a1.7z -aoa -o%HOMEPATH%\Local Settings\Temp -plolmilf
- %TEMP%\EuroP.exe
- <SYSTEM32>\rundll32.exe "%WINDIR%\mqsuiats.dll",Startup
- <SYSTEM32>\svchost.exe
- %WINDIR%\Explorer.EXE
- <SYSTEM32>\spoolsv.exe
- %TEMP%\_tbp.exe
- %TEMP%\ic1.exe
- %TEMP%\Gi.exe
- %WINDIR%\mqsuiats.dll
- %WINDIR%\Temp\6.tmp
- %TEMP%\4.tmp
- %TEMP%\a1.7z
- %TEMP%\7za.exe
- %TEMP%\nsu2.tmp
- %TEMP%\converter7.exe
- %TEMP%\EuroP.exe
- %TEMP%\E4U.exe
- %TEMP%\nse3.tmp\ExecDos.dll
- %TEMP%\5.tmp
- %TEMP%\nse3.tmp\ExecDos.dll
- %TEMP%\E4U.exe
- DNS ASK 00########.########.##.###########C4594B5BD0B6268C67233.n.empty.1147.empty.5_1._t_i.ffffffff.<Служебное имя>_exe.171.rc2.a4h9uploading.com
- DNS ASK cb##ase.com
- DNS ASK ap##e.com
- DNS ASK yo##u.com
- '<IP-адрес в локальной сети>':1035
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'SystemTray_Main' WindowName: ''
- ClassName: 'CSCHiddenWindow' WindowName: ''