Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] 'MyDllLoade' = '{880816C6-589A-4161-A21F-E545A306AE74}'
- '%WINDIR%\regedit.exe' /s C:\admin.reg
- '<SYSTEM32>\reg.exe' import C:\admin.reg
- '<SYSTEM32>\cmd.exe' /c C:\adminoff.bat
- C:\magentsetup.exe
- C:\drive32.dll
- C:\adminoff.bat
- C:\admin.reg
- C:\close.bat
- C:\close.bat
- C:\magentsetup.exe
- C:\admin.reg
- C:\adminoff.bat
- ClassName: 'RegEdit_RegEdit' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''