Техническая информация
- '<SYSTEM32>\reg.exe' delete HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /v hidden /f
- '<SYSTEM32>\findstr.exe' /c:"BLALALALALA" hosts.
- '<SYSTEM32>\cmd.exe' /c ""%TEMP%\1.tmp\hidden.bat" "
- <DRIVERS>\etc\hidden
- %TEMP%\1.tmp\hidden.bat
- %TEMP%\1.tmp\hidden.bat
- <DRIVERS>\etc\hosts