Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'AMD Athlon 17.34.553' = '%CommonProgramFiles%\Media\winlogon.exe'
- %CommonProgramFiles%\Media\winlogon.exe
- <SYSTEM32>\attrib.exe +h +s /d /s "%CommonProgramFiles%\Media"
- %CommonProgramFiles%\Media\file.txt
- %CommonProgramFiles%\Media\winlogon.exe