Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Winlogon' = '<DRIVERS>\RDP.exe'
- %WINDIR%\regedit.exe /s "<Текущая директория>\reg.reg"
- <SYSTEM32>\cmd.exe /c <DRIVERS>\reg.bat
- <SYSTEM32>\cmd.exe /c <DRIVERS>\config.bat
- ClassName: '' WindowName: 'Yahoo! Messenger'
- <Текущая директория>\reg.reg
- <DRIVERS>\RDP.exe
- <DRIVERS>\config.bat
- <DRIVERS>\reg.bat
- <DRIVERS>\RDP.exe
- <Текущая директория>\reg.reg
- <DRIVERS>\reg.bat
- <DRIVERS>\config.bat
- ClassName: '' WindowName: '&Sign In'
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'RegEdit_RegEdit' WindowName: ''