Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\6075f835bad6ce8d] 'ImagePath' = '<DRIVERS>\6075f835bad6ce8d.sys'
- [<HKLM>\SYSTEM\ControlSet001\Services\6075f835bad6ce8d] 'Start' = '00000000'
- [<HKLM>\SYSTEM\ControlSet001\Services\syshost32] 'Start' = '00000002'
- [<HKLM>\SYSTEM\ControlSet001\Services\22f53] 'Start' = '00000001'
- %WINDIR%\Installer\{885814E9-2AA8-0B10-B16C-02CE913867AE}\syshost.exe /service
- <SYSTEM32>\smss.exe
- System
- <DRIVERS>\6075f835bad6ce8d.sys
- <DRIVERS>\22f53.sys
- %WINDIR%\Installer\{885814E9-2AA8-0B10-B16C-02CE913867AE}\syshost.exe
- <DRIVERS>\22f53.sys
- из <Полный путь к вирусу> в %TEMP%\1cf15ed8.tmp