Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Out' = 'E:\Program6\Auto EOD.exe'
- '<SYSTEM32>\taskkill.exe' /f /im "Auto EOD.exe"
- ClassName: '' WindowName: ''
- '<SYSTEM32>\cmd.exe' /c taskkill /f /im "Auto EOD.exe"
- '<SYSTEM32>\cmd.exe' /c "net use z: /delete /Y"
- '<SYSTEM32>\net.exe' use z: /delete /Y
- '<SYSTEM32>\cmd.exe' /c rmdir /s /q "E:\Program5"
- '<SYSTEM32>\cmd.exe' /c reg add HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /v Out /t REG_SZ /d "E:\Program6\Auto EOD.exe" /f
- '<SYSTEM32>\reg.exe' add HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /v Out /t REG_SZ /d "E:\Program6\Auto EOD.exe" /f
- '<SYSTEM32>\cmd.exe' /c call "E:\Program6\Auto EOD.exe" /f