Техническая информация
- [<HKLM>\SYSTEM\ControlSet003\Services\jokcpm] 'Start' = '00000002'
- [<HKLM>\SYSTEM\ControlSet002\Services\jokcpm] 'Start' = '00000002'
- [<HKLM>\SYSTEM\ControlSet001\Services\jokcpm] 'Start' = '00000002'
- %WINDIR%\E4x35R7Kxi4G6wBk4YUI.exe
- %WINDIR%\gtpC3BLmppIjiJEhSf8o.exe
- <SYSTEM32>\svchost.exe -k jokcpm
- <SYSTEM32>\jokcpm.dll
- %WINDIR%\E4x35R7Kxi4G6wBk4YUI.exe
- %WINDIR%\gtpC3BLmppIjiJEhSf8o.exe
- '10.#0.0.2':3030
- ClassName: '#32771' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'AutoHotkey' WindowName: '%WINDIR%\E4x35R7Kxi4G6wBk4YUI.exe'