Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\360DST] 'ImagePath' = '%TEMP%\uUrMI0Y.sys'
- '<SYSTEM32>\360Tray.exe'
- NtOpenProcess, драйвер-обработчик: uUrMI0Y.sys
- C:\bfdl.txt
- %TEMP%\uUrMI0Y.sys
- <SYSTEM32>\360Tray.exe
- C:\ml.txt
- %TEMP%\uUrMI0Y.sys
- %TEMP%\uUrMI0Y.sys
- 'qx#####000031.my3w.com':80
- http://qx#####000031.my3w.com/fw.txt
- DNS ASK qx#####000031.my3w.com
- ClassName: '' WindowName: 'YY.exe'
- ClassName: '' WindowName: 'iSpeak.exe'
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: '' WindowName: 'MW.exe'
- ClassName: '' WindowName: '<Имя файла>.exe'
- ClassName: '' WindowName: '????.exe'
- ClassName: '' WindowName: '°Бє®.exe'