Техническая информация
- [<HKLM>\SOFTWARE\Classes\IE0\Shell\Open\Command] '' = '%PROGRAM_FILES%\internet explorer\iexplore.exe http://www.laixiashu.com'
- <SYSTEM32>\reg.exe Restore "HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Desktop" "C:\aa.dat"
- %WINDIR%\regedit.exe /s C:\aa.dat
- C:\aa.dat
- %HOMEPATH%\Desktop\РЎЛµПВФШНш.KK1
- C:\aa.dat
- ClassName: 'RegEdit_RegEdit' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''