Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\hjgruitakmkkyx] 'start' = '00000001'
- [<HKLM>\SYSTEM\ControlSet001\Services\hjgruitakmkkyx] 'imagepath' = '<DRIVERS>\hjgruiplcjmhxo.sys'
- [<HKLM>\SYSTEM\ControlSet001\Services\cynvnnoixgqdeqds] 'start' = '00000001'
- [<HKLM>\SYSTEM\ControlSet001\Services\cynvnnoixgqdeqds] 'imagepath' = '<DRIVERS>\cynvnnoixgqdeqds.sys'
- '<SYSTEM32>\spoolsv.exe'
- <DRIVERS>\cynvnnoixgqdeqds.sys
- <DRIVERS>\hjgruiplcjmhxo.sys
- %TEMP%\pyymdetqsb.tmp
- %TEMP%\pctffwimuk.tmp