Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Olemgs32' = 'REGEDIT /s <SYSTEM32>\Olemgs32.reg'
- C:\DbgLog4.log
- C:\DbgLog5.log
- ,'\Device\HGFS\vm_shara\.live', 0x12019f, 1, 0x6
- C:\DbgLog3.log
- <SYSTEM32>\Olemgs32.reg
- C:\DbgLog1.log
- C:\DbgLog2.log