Техническая информация
- '<SYSTEM32>\net1.exe' stop ekrn
- '<SYSTEM32>\net.exe' stop ekrn
- '<SYSTEM32>\taskkill.exe' /IM egui.exe /F
- '<SYSTEM32>\ping.exe' -n 3 127.0.0.1
- '<SYSTEM32>\taskkill.exe' /IM ekrn.exe /F
- '%WINDIR%\regedit.exe' /e C:\ESET\eset2.reg "HKEY_LOCAL_MACHINE\SOFTWARE\ESET\ESET Security\CurrentVersion\Plugins\01000400\Profiles\@My profile"
- '%WINDIR%\regedit.exe' /e C:\ESET\eset1.reg "HKEY_LOCAL_MACHINE\SOFTWARE\ESET\ESET Security\CurrentVersion\LicenseInfo"
- '%WINDIR%\regedit.exe' /s un_eset.reg
- '<SYSTEM32>\regsvr32.exe' /u /s ekernhips.dll
- '<SYSTEM32>\regsvr32.exe' /u /s eguihips.dll
- ekrn.exe
- %TEMP%\2824CIC7.BAT
- %TEMP%\Un_ESET.EXE
- %TEMP%\2824CIC7.BAT
- %TEMP%\2824CIC7.BAT
- ClassName: 'RegEdit_RegEdit' WindowName: '(null)'
- ClassName: '(null)' WindowName: '(null)'
- ClassName: 'EDIT' WindowName: '(null)'
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'