Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'gaIplus' = 'adminconfig.exe'
- %WINDIR%\sysconfig.ini
- '<SYSTEM32>\cacls.exe' <SYSTEM32>\Iadmin.sys /E /C /G Everyone:C
- '<SYSTEM32>\cacls.exe' %WINDIR%\sysconfig.ini /E /C /G Everyone:C