Техническая информация
- [HKLM\System\CurrentControlSet\Services\Rsiztk cuiuojzp] 'Start' = '00000002'
- [HKLM\System\CurrentControlSet\Services\Rsiztk cuiuojzp] 'ImagePath' = 'ProgramFiles\Microsoft Uoqioi\Ntcqbc vksmetho'
- 'Rsiztk cuiuojzp' ProgramFiles\Microsoft Uoqioi\Ntcqbc vksmetho
- %TEMP%\sevchost.exe
- %HOMEPATH%\documents\my\lock.lock
- %WINDIR%\syswow64\programfiles\microsoft uoqioi\ntcqbc vksmetho
- %HOMEPATH%\documents\my\lock.lock
- %WINDIR%\syswow64\programfiles\microsoft uoqioi\ntcqbc vksmetho
- '42.##4.196.162':8011
- ClassName: '66' WindowName: ''
- '%TEMP%\sevchost.exe'