Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Visual Detection Logon Notification Themes' = '%APPDATA%\Roaming\jqzwcuzkdu\cijvpxgwpuq.exe'
- '%APPDATA%\Roaming\jqzwcuzkdu\kltofcceqdic.exe' "%APPDATA%\Roaming\jqzwcuzkdu\cijvpxgwpuq.exe"
- '%APPDATA%\Roaming\jqzwcuzkdu\cijvpxgwpuq.exe'
- %APPDATA%\Roaming\jqzwcuzkdu\cijvpxgwpuq.unpw
- %APPDATA%\Roaming\jqzwcuzkdu\kltofcceqdic.exe
- %APPDATA%\Roaming\jqzwcuzkdu\cijvpxgwpuq.exe
- %APPDATA%\Roaming\jqzwcuzkdu\kltofcceqdic.exe
- %APPDATA%\Roaming\jqzwcuzkdu\cijvpxgwpuq.exe
- DNS ASK li####country.net
- DNS ASK de####ycountry.net
- DNS ASK ri####century.net
- DNS ASK ri####famous.net
- DNS ASK be####century.net
- DNS ASK li###epower.net
- DNS ASK de####yfamous.net
- DNS ASK li####century.net
- DNS ASK dn#.##ftncsi.com
- DNS ASK de####ypower.net
- DNS ASK li####famous.net
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'Indicator' WindowName: ''