Техническая информация
- '%WINDIR%\regedit.exe' /S C:\TS.REG
- '<SYSTEM32>\sysocmgr.exe' /i:%WINDIR%\inf\sysoc.inf /u:c:\bootlog~.txt /q
- '<SYSTEM32>\cmd.exe' /c ""c:\enb.bat" "
- '<SYSTEM32>\shutdown.exe' -s -t 00
- [<HKLM>\Software\Microsoft\MessengerService]
- %TEMP%\IIS1.tmp
- %TEMP%\IIS2.tmp
- C:\bootlog~.txt
- C:\enb.bat
- C:\TS.reg
- %TEMP%\IIS2.tmp
- %TEMP%\IIS1.tmp
- %WINDIR%\imsins.BAK
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: 'STUFF-BOOT' WindowName: '(null)'
- ClassName: 'RegEdit_RegEdit' WindowName: '(null)'