Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\Sdsme] 'Start' = '00000002'
- %CommonProgramFiles%\borCsedeName.exe
- C:\main.exe
- <SYSTEM32>\ping.exe 127.0.0.1 -n 3
- <SYSTEM32>\cmd.exe /c c:\delblsheesc.bat
- %CommonProgramFiles%\dp1.fne
- %CommonProgramFiles%\IJL15.DLL
- %CommonProgramFiles%\krnln.fnr
- %CommonProgramFiles%\Exmlrpc.fne
- %CommonProgramFiles%\krnln.fne
- %TEMP%\borC76952.dll
- C:\delblsheesc.bat
- %TEMP%\_eviip.tmp
- %CommonProgramFiles%\borCsedeName.dll
- C:\krnln.fnr
- C:\exmlrpc.fne
- C:\main.exe
- C:\main.dll
- %TEMP%\nsb2.tmp\System.dll
- %CommonProgramFiles%\borCsedeName.exe
- C:\dp1.fne
- C:\ijl.dat
- %CommonProgramFiles%\dp1.fne
- %CommonProgramFiles%\IJL15.DLL
- %CommonProgramFiles%\Exmlrpc.fne
- %CommonProgramFiles%\borCsedeName.exe
- %CommonProgramFiles%\krnln.fnr
- C:\ijl.dat
- C:\main.dll
- C:\main.exe
- C:\dp1.fne
- %TEMP%\nsb2.tmp\System.dll
- C:\krnln.fnr
- C:\exmlrpc.fne
- '12#.0.0.2':19820
- 'li#####257.gnway.net':19820
- DNS ASK li#####257.gnway.net
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: '' WindowName: ''