Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run] '360tray' = '%WINDIR%\dirtyy\spoolsv.vbe'
- %WINDIR%\regedit.exe /s 12.reg
- <SYSTEM32>\attrib.exe +a +s +h %WINDIR%\dirtyy
- <SYSTEM32>\wscript.exe "%WINDIR%\dirtyy\spoolsv.vbe"
- %WINDIR%\dirtyy\2.bat
- %WINDIR%\dirtyy\spoolsv.vbe
- %WINDIR%\dirtyy\12.reg
- %WINDIR%\dirtyy\down21.bat
- ClassName: 'RegEdit_RegEdit' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'EDIT' WindowName: ''