Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\360°ІИ«ОАКїКµК±±Ј»¤] 'Start' = '00000002'
- %PROGRAM_FILES%\360safer.exe -k
- %TEMP%\20091028.UPX.exe
- %WINDIR%\NOTEPAD.EXE
- %WINDIR%\explorer.exe ЁБ
- <SYSTEM32>\notepad.exe
- %WINDIR%\explorer.exe
- %PROGRAM_FILES%\360safer.exe
- %TEMP%\20091028.UPX.exe
- %PROGRAM_FILES%\360safer.exe
- 'xx###9.7766.org':3388
- DNS ASK xx###9.7766.org
- ClassName: 'MS_WINHELP' WindowName: ''
- ClassName: 'Notepad' WindowName: ''