Техническая информация
- [<HKLM>\SYSTEM\ControlSet002\Services\Idhx57] 'Start' = '00000000'
- [<HKLM>\SYSTEM\ControlSet001\Services\Idhx57] 'Start' = '00000000'
- [<HKLM>\SYSTEM\ControlSet001\Services\symavc32] 'Start' = '00000002'
- <SYSTEM32>\cmd.exe /c """%TEMP%\_it.bat"" "
- %TEMP%\_it.bat
- <SYSTEM32>\owogeset.tmp
- <DRIVERS>\symavc32.sys
- <DRIVERS>\Idhx57.sys