Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\jvxxut] 'Start' = '00000002'
- '<SYSTEM32>\3600ser.exe'
- '<SYSTEM32>\jvxxut.exe'
- <SYSTEM32>\jvxxut.exe
- <SYSTEM32>\3600ser.exe
- <SYSTEM32>\winda.ini
- <SYSTEM32>\winda.ini
- 'ye####x41.3322.org':7887
- DNS ASK ye####x41.3322.org
- ClassName: 'MS_WINHELP' WindowName: '(null)'