Техническая информация
- Средство контроля пользовательских учетных записей (UAC)
- '<SYSTEM32>\reg.exe' add "HKLM\SYSTEM\CurrentControlSet\Services\wuauserv" /v Start /t REG_DWORD /d 0x4 /f
- '<SYSTEM32>\net.exe' stop "Security Center"
- '<SYSTEM32>\reg.exe' add "HKLM\SYSTEM\CurrentControlSet\Services\wscsvc" /v Start /t REG_DWORD /d 0x4 /f
- '<SYSTEM32>\cmd.exe' /c ""%TEMP%\347.bat""
- '<SYSTEM32>\net1.exe' stop "Security Center"
- '<SYSTEM32>\net.exe' stop sharedaccess
- '<SYSTEM32>\net.exe' stop wscsvc
- '<SYSTEM32>\net1.exe' stop wscsvc
- '<SYSTEM32>\net1.exe' stop sharedaccess
- '<SYSTEM32>\reg.exe' add "HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess" /v Start /t REG_DWORD /d 0x4 /f
- [<HKCU>\Software\FTPWare\COREFTP\Sites]
- ClassName: '(null)' WindowName: 'Yahoo! Messenger'
- %TEMP%\347.bat