Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'DriverODBCVer initialize' = '<SYSTEM32>\DriverODBC.exe -method2'
- [<HKLM>\SYSTEM\ControlSet001\Services\Microsoft Disk Manager] 'ImagePath' = '<SYSTEM32>\Winctrl.exe -start_server'
- [<HKLM>\SYSTEM\ControlSet001\Services\Microsoft Disk Manager] 'Start' = '00000002'
- <SYSTEM32>\DriverODBC.exe
- <SYSTEM32>\Winctrl.exe