Technical Information
- [HKLM\System\CurrentControlSet\Services\hcpidesk] 'Start' = '00000002'
- [HKLM\System\CurrentControlSet\Services\hcpidesk] 'ImagePath' = '<DRIVERS>\hcpidesk.sys'
- 'hcpidesk' <DRIVERS>\hcpidesk.sys
- %TEMP%\nsueaeb.tmp
- %TEMP%\nspeb1b.tmp\system.dll
- %TEMP%\dosss11.dll
- %TEMP%\hcpidesk.sys
- %WINDIR%\syswow64\drivers\hcpidesk.sys
- %TEMP%\nspeb1b.tmp\system.dll