Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon] 'DllName' = ''
- [<HKLM>\SYSTEM\ControlSet001\Control\Session Manager] 'BootExecute' = ''
- [<HKLM>\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon] 'Logon' = 'WLEventLogon'
- [<HKLM>\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon] 'Startup' = 'WLEventStartup'
- %WINDIR%\Temp\XP\wscript.exe "%WINDIR%\Temp\XP\Instalar.vbs"
- %WINDIR%\regedit.exe -s ".\Parche.reg
- <SYSTEM32>\attrib.exe -r -a -s -h "<DRIVERS>\etc\hosts"
- <SYSTEM32>\net1.exe START bits
- <SYSTEM32>\net1.exe START wuauserv
- <SYSTEM32>\net1.exe STOP bits
- <SYSTEM32>\net.exe STOP bits
- <SYSTEM32>\net.exe STOP wuauserv
- <SYSTEM32>\taskkill.exe /IM wgatray.exe /F /T
- <SYSTEM32>\net1.exe STOP wuauserv
- <SYSTEM32>\LegitCheckControl.dll
- %WINDIR%\Temp\XP\LegitCheckControl.dll
- %WINDIR%\Temp\XP\Instalar.vbs
- <SYSTEM32>\WgaTray.exe
- %ALLUSERSPROFILE%\Escritorio
- %WINDIR%\MGADiag.exe
- <SYSTEM32>\SETB.tmp
- %WINDIR%\Temp\XP\Parche.reg
- %WINDIR%\Temp\XP\MGADiag.lnk
- %WINDIR%\Temp\XP\MGADiag.exe
- %WINDIR%\Temp\XP\WgaLogon.dll
- %WINDIR%\Temp\XP\hosts
- %WINDIR%\Temp\XP\wscript.exe
- %WINDIR%\Temp\XP\WgaTray.exe
- ClassName: '' WindowName: ''
- ClassName: 'RegEdit_RegEdit' WindowName: ''
- ClassName: 'EDIT' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''