Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\hjgruialxbwyoc] 'start' = '00000001'
- [<HKLM>\SYSTEM\ControlSet001\Services\hjgruialxbwyoc] 'imagepath' = '<DRIVERS>\hjgruirjklfseh.sys'
- [<HKLM>\SYSTEM\ControlSet001\Services\xrpegoijxtqxxnoi] 'start' = '00000001'
- [<HKLM>\SYSTEM\ControlSet001\Services\xrpegoijxtqxxnoi] 'imagepath' = '<DRIVERS>\xrpegoijxtqxxnoi.sys'
- '<SYSTEM32>\spoolsv.exe'
- <DRIVERS>\xrpegoijxtqxxnoi.sys
- <DRIVERS>\hjgruirjklfseh.sys
- %TEMP%\cynemntxtu.tmp
- %TEMP%\ekvnxcybdw.tmp