Техническая информация
- [<HKLM>\SYSTEM\ControlSet002\Services\Msv59] 'Start' = '00000000'
- [<HKLM>\SYSTEM\ControlSet001\Services\Msv59] 'Start' = '00000000'
- [<HKLM>\SYSTEM\ControlSet001\Services\mickey32] 'Start' = '00000002'
- <SYSTEM32>\cmd.exe /c ""%TEMP%\mc32.bat" "
- %TEMP%\mc32.bat
- <SYSTEM32>\wiwpsfsr.tmp
- <DRIVERS>\mickey32.sys
- <DRIVERS>\Msv59.sys