Техническая информация
- '<SYSTEM32>\taskkill.exe' /f /im BaiduYunGuanjia.exe
- '<SYSTEM32>\taskkill.exe' /f /im ░┘╢╚╘╞╗Ё│╡░ц.exe
- %TEMP%\CTEVPGWD.bat
- ClassName: '' WindowName: ''
- '<SYSTEM32>\cmd.exe' /c ""%TEMP%\CTEVPGWD.bat" <Полный путь к файлу>"
- '<SYSTEM32>\regsvr32.exe' /s npYunWebDetect.dll
- '<SYSTEM32>\reg.exe' delete "HKCU\Software\Baidu\BaiduYunGuanjia" /f
- '<SYSTEM32>\reg.exe' delete "HKCR\CLSID\{679F137C-3162-45da-BE3C-2F9C3D093F64}" /f
- '<SYSTEM32>\reg.exe' delete "HKCU\SOFTWARE\Classes\CLSID\{679F137C-3162-45da-BE3C-2F9C3D093F64}" /f