Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] 'DoNotAllowExceptions' = '00000000'
- [<HKLM>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] 'EnableFirewall' = '00000000'
- '<SYSTEM32>\taskkill.exe' /f /im egui.EXE
- '<SYSTEM32>\net1.exe' stop "Panda Internet Security "
- '<SYSTEM32>\net.exe' stop "McAfee VirusScan Enterprise"
- '<SYSTEM32>\net1.exe' stop "Norton Antivirus Auto Protect Service"
- '<SYSTEM32>\taskkill.exe' /f /im ekrn.EXE
- '<SYSTEM32>\net1.exe' stop "Kaspersky Internet Security"
- '<SYSTEM32>\net1.exe' stop "McAfee VirusScan Enterprise"
- '<SYSTEM32>\net1.exe' stop "Panda Antivirus"
- '<SYSTEM32>\taskkill.exe' /f /mi aVP.exe
- '<SYSTEM32>\net.exe' stop "NOD32 Antivirus"
- '<SYSTEM32>\net.exe' stop "Norton Antivirus Auto Protect Service"
- '<SYSTEM32>\netsh.exe' firewall set opmode disable
- '<SYSTEM32>\net.exe' stop "Kaspersky Anti-Virus"
- '<SYSTEM32>\net.exe' stop "Panda Internet Security "
- '<SYSTEM32>\net.exe' stop "Kaspersky Internet Security"
- '<SYSTEM32>\net1.exe' stop "NOD32 Antivirus"
- '<SYSTEM32>\net.exe' stop "Panda Antivirus"
- '<SYSTEM32>\net1.exe' stop "Kaspersky Anti-Virus"
- ekrn.exe
- <Полный путь к вирусу>
- ClassName: '(null)' WindowName: '(null)'