Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'regedit' = '%WINDIR%\cmd.exe'
- C:\1.txt
- %WINDIR%\cmd.exe
- '87.##2.169.14':80
- 87.##2.169.14/banderasa/upload.php
- ClassName: '' WindowName: 'Form1'
- ClassName: 'Shell_TrayWnd' WindowName: ''