Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Windows Driver Foundation' = '"<SYSTEM32>\WDFHost.exe"'
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Windows Software Protection' = '"<SYSTEM32>\WSPService.exe"'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Windows-Audio' = '"<SYSTEM32>\audiohd.exe"'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'SQL Server VSS Reader' = '"<SYSTEM32>\sqlreader.exe"'
- скрытых файлов
- <SYSTEM32>\WSPService.exe
- <SYSTEM32>\sqlreader.exe
- <SYSTEM32>\audiohd.exe
- <SYSTEM32>\WDFHost.exe
- <SYSTEM32>\WSPService.exe
- <SYSTEM32>\sqlreader.exe
- <SYSTEM32>\WDFHost.exe
- <SYSTEM32>\audiohd.exe
- <SYSTEM32>\WSPService.exe
- <SYSTEM32>\sqlreader.exe
- <SYSTEM32>\audiohd.exe
- <SYSTEM32>\WDFHost.exe
- ClassName: 'Indicator' WindowName: ''