Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'System Update' = '%WINDIR%\svhost.exe'
- <SYSTEM32>\cmd.exe /c start C:\Arq.bat
- C:\Arq.bat
- C:\Edt.reg
- %WINDIR%\svhost.exe
- C:\Arq.bat
- '20#.#6.80.226':80
- 20#.#6.80.226/~emhmaspb/index.php
- ClassName: 'Shell_TrayWnd' WindowName: ''