Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\hjgruixfqrmppk] 'start' = '00000001'
- [<HKLM>\SYSTEM\ControlSet001\Services\xrqrjkbxpbhosete] 'start' = '00000001'
- <SYSTEM32>\spoolsv.exe
- <DRIVERS>\xrqrjkbxpbhosete.sys
- <DRIVERS>\hjgruirjbaswwi.sys
- %TEMP%\dxwbwqvrns.tmp
- %TEMP%\sipfvscbqh.tmp