Техническая информация
- [<HKLM>\SYSTEM\ControlSet002\Services\ESudisk] 'Start' = '00000000'
- [<HKLM>\SYSTEM\ControlSet001\Services\ESudisk] 'Start' = '00000000'
- %WINDIR%\system\xinyisu\Install.exe -install ce -password marky65891566 -reboot
- <SYSTEM32>\logonui.exe /status /shutdown
- <SYSTEM32>\ping.exe -n 30 127.0.0.1
- <SYSTEM32>\cmd.exe /c ""%WINDIR%\system\xinyisu\xinyisu.bat" "
- %WINDIR%\system\xinyisu\unl
- <DRIVERS>\Esudisk.sys
- %WINDIR%\system\xinyisu\xinyisu.bat
- %WINDIR%\system\xinyisu\Install.exe
- %WINDIR%\system\xinyisu\xinyisu.bat
- %WINDIR%\bootstat.dat в %WINDIR%\bootstat.bak
- ClassName: 'StatusWindowClass' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'EDIT' WindowName: ''