Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\RunOnce] '7219sy1' = '%HOMEPATH%\7219sy1\81021.vbs'
- '%HOMEPATH%\7219sy1\GSOErpiJjP.exe' xBqSaACiqj.CGD
- '%WINDIR%\Microsoft.NET\Framework\v2.0.50727\RegSvcs.exe'
- %WINDIR%\Microsoft.NET\Framework\v2.0.50727\RegSvcs.exe
- %HOMEPATH%\7219sy1\XEisegVM.IKQ
- %HOMEPATH%\7219sy1\23923.cmd
- %HOMEPATH%\7219sy1\81021.vbs
- %HOMEPATH%\7219sy1\dFBCJakH.FCS
- %HOMEPATH%\7219sy1\GSOErpiJjP.exe
- %HOMEPATH%\7219sy1\xBqSaACiqj.CGD
- %HOMEPATH%\7219sy1\XEisegVM.IKQ
- %HOMEPATH%\7219sy1\81021.vbs
- %HOMEPATH%\7219sy1\23923.cmd
- %HOMEPATH%\7219sy1\dFBCJakH.FCS
- %HOMEPATH%\7219sy1\GSOErpiJjP.exe
- %HOMEPATH%\7219sy1\xBqSaACiqj.CGD
- 'ja####se-drama.net':3333
- DNS ASK ja####se-drama.net
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: 'EDIT' WindowName: '(null)'