Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\Irmon] 'Start' = '00000002'
- '<SYSTEM32>\taskkill.exe' /f /t /im UfSeAgnt.exe
- 360tray.exe
- %TEMP%\253484_res.tmp
- %TEMP%\253484_res.tmp в <SYSTEM32>\Irmontype.dll
- 'www.by####allation.com':7099
- DNS ASK www.by####allation.com
- ClassName: '' WindowName: ''