Техническая информация
- %WINDIR%\tasks\solidtiles.job
- [<HKLM>\System\CurrentControlSet\Services\Democratic Trust] 'Start' = '00000002'
- [<HKLM>\System\CurrentControlSet\Services\Democratic Trust] 'ImagePath' = '%APPDATA%\Democratic Trust\Democratic Trust.exe'
- C:\users\0-0\appdata\local\temp\suqelxps.exe
- %APPDATA%\democratic trust\democratic trust.exe
- %ALLUSERSPROFILE%\application data\{3628472f-12fd-936c-3628-8472f12f1cbc}\suqelxps.exe
- %ALLUSERSPROFILE%\application data\{3628472f-12fd-936c-3628-8472f12f1cbc}\suqelxps.dat
- %APPDATA%\democratic trust\jp3if.dat
- DNS ASK pa###tmodel.biz
- DNS ASK al####el-pro.com
- DNS ASK fu###set.work
- DNS ASK fu###et.link
- ClassName: 'EDIT' WindowName: ''
- 'C:\users\0-0\appdata\local\temp\suqelxps.exe'
- '%APPDATA%\democratic trust\democratic trust.exe'