Техническая информация
- [<HKLM>\SOFTWARE\Classes\HTTP\shell\open\command] '' = '"%PROGRAM_FILES%\Internet Explorer\Iexplore.exe" "%1"'
- '<SYSTEM32>\attrib.exe' <SYSTEM32> -s -h
- <SYSTEM32>\Yhczku.dll.log
- <SYSTEM32>\Yhczku.dll.log
- 'ch####ha.cswblm.com':8088
- 'zz###o.i8cs.com':8088
- 'localhost':1038
- DNS ASK ch####ha.cswblm.com
- DNS ASK zz###o.i8cs.com
- 'localhost':13332
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: '' WindowName: 'qwerpoiu'