Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Acquisition Auto-Discovery Search' = 'C:\jskixfbpyb\sxdzoxsaq.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Tools Disk Security Visual] 'Start' = '00000002'
- 'C:\jskixfbpyb\mcttsrd.exe' "c:\jskixfbpyb\sxdzoxsaq.exe"
- 'C:\jskixfbpyb\sxdzoxsaq.exe'
- 'C:\jskixfbpyb\hcx356l0wlhepdccmm.exe'
- C:\jskixfbpyb\sxdzoxsaq.exe
- C:\jskixfbpyb\mcttsrd.exe
- C:\jskixfbpyb\nfzv5g
- %WINDIR%\jskixfbpyb\redmmn
- C:\jskixfbpyb\redmmn
- C:\jskixfbpyb\hcx356l0wlhepdccmm.exe
- C:\jskixfbpyb\mcttsrd.exe
- C:\jskixfbpyb\sxdzoxsaq.exe
- C:\jskixfbpyb\hcx356l0wlhepdccmm.exe
- %WINDIR%\jskixfbpyb\redmmn
- 'pr####thonor.net':80
- 'th####either.net':80
- 'th###honor.net':80
- 'th####elieve.net':80
- 'cl####uarter.net':80
- http://pr####thonor.net/index.php?me########
- http://th####either.net/index.php?me########
- http://th###honor.net/index.php?me########
- http://th####elieve.net/index.php?me########
- http://cl####uarter.net/index.php?me########
- DNS ASK th###honor.net
- DNS ASK cl####uarter.net
- DNS ASK th####either.net
- DNS ASK pr####thonor.net
- DNS ASK th####uarter.net
- DNS ASK cl####elieve.net
- DNS ASK th####elieve.net
- DNS ASK cl####eceive.net
- DNS ASK th####eceive.net
- ClassName: 'Shell_TrayWnd' WindowName: ''