Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'DBBFE9E9' = '%APPDATA%\DBBFE9E9\bin.exe'
- <SYSTEM32>\ctfmon.exe
- firefox.exe
- Процесс firefox.exe, модуль nss3.dll
- Процесс iexplore.exe, модуль wininet.dll
- %APPDATA%\dbbfe9e9\bin.exe
- DNS ASK activex.microsoft.com
- DNS ASK codecs.microsoft.com
- DNS ASK hg####opefny.com
- DNS ASK qu###pfqqgvu.ru
- DNS ASK qu###pfqqgvu.su
- ClassName: '' WindowName: ''
- ClassName: '' WindowName: '5'
- '%WINDIR%\explorer.exe'