Техническая информация
- [<HKLM>\Software\Microsoft\Windows\CurrentVersion\Run] 'Secondary Computer Video Proxy Keying Locator' = 'C:\ysnvpsuwywhf\tesnfmjtd.exe'
- [<HKLM>\System\CurrentControlSet\Services\Experience Link-Layer UPnP Adapter Host Netlogon] 'Start' = '00000002'
- [<HKLM>\System\CurrentControlSet\Services\Experience Link-Layer UPnP Adapter Host Netlogon] 'ImagePath' = 'C:\ysnvpsuwywhf\tesnfmjtd.exe'
- %WINDIR%\ysnvpsuwywhf\iimafq6
- C:\ysnvpsuwywhf\iimafq6
- C:\ysnvpsuwywhf\jiqnrx4tcla4abuyhe.exe
- C:\ysnvpsuwywhf\tesnfmjtd.exe
- C:\ysnvpsuwywhf\esttlqkuc.exe
- C:\ysnvpsuwywhf\tesnfmjtd.exe
- C:\ysnvpsuwywhf\esttlqkuc.exe
- %WINDIR%\ysnvpsuwywhf\iimafq6
- C:\ysnvpsuwywhf\jiqnrx4tcla4abuyhe.exe
- %WINDIR%\ysnvpsuwywhf\iimafq6
- DNS ASK pr####ereceive.net
- DNS ASK de####receive.net
- DNS ASK pr####equarter.net
- DNS ASK de####quarter.net
- DNS ASK st####thbranch.net
- DNS ASK st###branch.net
- 'C:\ysnvpsuwywhf\jiqnrx4tcla4abuyhe.exe'
- 'C:\ysnvpsuwywhf\tesnfmjtd.exe'
- 'C:\ysnvpsuwywhf\esttlqkuc.exe' "c:\ysnvpsuwywhf\tesnfmjtd.exe"