Trojan.Agent
* Registry path
HKEY_LOCAL_MACHINE\SOFTWARE\7E745E7F7BAA4842A833716036DEBF6F
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0E59BD9B-8E03-460B-9BF0-A5C84542F811}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{580532DE-081E-4CCD-B1C7-CF0E13D5FA96}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{697C8B44-3A4D-492C-AB6F-8FF8EBC37CA3}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{731FEDDE-DAB0-479E-83CA-BA8EC22EA3C2}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\CompatibilityAdapter\Signatures | Bidaily Synchronize Task[973b].job
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\CompatibilityAdapter\Signatures | Bidaily Synchronize Task[973b].job.fp
* Files path
C\Windows\System32\Tasks\{580532DE-081E-4CCD-B1C7-CF0E13D5FA96}
C\Windows\System32\Tasks\{731FEDDE-DAB0-479E-83CA-BA8EC22EA3C2}
|
|