Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'ПµНіКдИл·Ё№¤ѕЯ' = '%WINDIR%\ctfmon.exe'
- '%WINDIR%\ctfmon.exe'
- '<SYSTEM32>\svchost.exe'
- <SYSTEM32>\svchost.exe
- %WINDIR%\ctfmon.exe
- 'c1.##b.yy.com':80
- 'localhost':1038
- 'localhost':1036
- c1.##b.yy.com/r/rc/main/main/1/36/main.swf?ty#######################
- DNS ASK c1.##b.yy.com
- ClassName: '' WindowName: 'Microsoft Internet Explorer'
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'QWidget' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''