Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\services\Windows Helper Log Connectivity Wired Player] 'Start' = '00000002'
- 'C:\qnirxsubstbx\fsdandflm.exe' "c:\qnirxsubstbx\zzsgpvya.exe"
- 'C:\qnirxsubstbx\zzsgpvya.exe'
- 'C:\qnirxsubstbx\txqmf9fz5ywframnzh0wwa.exe'
- C:\qnirxsubstbx\zzsgpvya.exe
- C:\qnirxsubstbx\fsdandflm.exe
- C:\qnirxsubstbx\ioyqg0bocpm3
- %WINDIR%\qnirxsubstbx\axkousdgz
- C:\qnirxsubstbx\axkousdgz
- C:\qnirxsubstbx\txqmf9fz5ywframnzh0wwa.exe
- C:\qnirxsubstbx\fsdandflm.exe
- C:\qnirxsubstbx\zzsgpvya.exe
- C:\qnirxsubstbx\txqmf9fz5ywframnzh0wwa.exe
- %WINDIR%\qnirxsubstbx\axkousdgz
- DNS ASK la###course.net
- DNS ASK ca####npaint.net
- DNS ASK ca####ncourse.net
- DNS ASK ca####nwomen.net
- DNS ASK la###women.net
- DNS ASK dn#.##ftncsi.com
- DNS ASK de###ewomen.net
- DNS ASK la###clean.net
- DNS ASK la###paint.net
- DNS ASK ca####nclean.net
- ClassName: 'Shell_TrayWnd' WindowName: ''