Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Backup Print Reports Gateway Device Biometric' = '%APPDATA%\Roaming\qdifnjkzucjyld\krkejtjdm.exe'
- '%APPDATA%\Roaming\qdifnjkzucjyld\yqntnxtwgezl.exe' "%APPDATA%\Roaming\qdifnjkzucjyld\krkejtjdm.exe"
- '%APPDATA%\Roaming\qdifnjkzucjyld\krkejtjdm.exe'
- %APPDATA%\Roaming\qdifnjkzucjyld\krkejtjdm.utx
- %APPDATA%\Roaming\qdifnjkzucjyld\yqntnxtwgezl.exe
- %APPDATA%\Roaming\qdifnjkzucjyld\krkejtjdm.exe
- %APPDATA%\Roaming\qdifnjkzucjyld\krkejtjdm.exe
- DNS ASK ex###tclear.net
- DNS ASK en####hduring.net
- DNS ASK be####eclear.net
- DNS ASK be####egeneral.net
- DNS ASK ex####general.net
- DNS ASK ei####during.net
- DNS ASK en####hnotice.net
- DNS ASK ei####notice.net
- DNS ASK dn#.##ftncsi.com
- DNS ASK en####hindeed.net
- DNS ASK ei####indeed.net
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'Indicator' WindowName: ''