Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\BITS] 'Start' = '00000002'
- %WINDIR%\Config\temp.exe
- <SYSTEM32>\reg.exe add HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Bits\Parameters /v ServiceDll /t REG_EXPAND_SZ /d <SYSTEM32>\bitsvc.dll /f
- <SYSTEM32>\bitsvc.dll
- %WINDIR%\Config\temp.exe
- %WINDIR%\Config\temp.exe