Техническая информация
- [<HKLM>\SOFTWARE\Classes\reg\shell\open\command] '' = '"%TEMP%\F334.tmp\RegWorkshop.exe" /g "%1"'
- '%TEMP%\F334.tmp\SetACL32.exe' -on "hklm\SOFTWARE\ESET\ESET Security\CurrentVersion\Info" -ot reg -actn ace -ace "n:System;p:set_val;m:deny"
- '%TEMP%\F334.tmp\RegWorkshop.exe' /s 21UPD.reg
- '%TEMP%\F334.tmp\RegWorkshop.exe' /s 11DEL.reg
- '<SYSTEM32>\shutdown.exe' -r -f -t 0
- %TEMP%\F334.tmp\rwreg.txt
- %TEMP%\F334.tmp\RegWorkshopX64.exe
- %TEMP%\F334.tmp\SetACL64.exe
- %TEMP%\F334.tmp\SetACL32.exe
- %TEMP%\F334.tmp\11DEL.reg
- %TEMP%\F334.tmp\31EEFixUPD.bat
- %TEMP%\F334.tmp\RegWorkshop.exe
- %TEMP%\F334.tmp\21UPD.reg
- %TEMP%\F334.tmp\rwreg.txt
- %TEMP%\F334.tmp\RegWorkshopX64.exe
- %TEMP%\F334.tmp\SetACL64.exe
- %TEMP%\F334.tmp\SetACL32.exe
- %TEMP%\F334.tmp\21UPD.reg
- %TEMP%\F334.tmp\11DEL.reg
- %TEMP%\F334.tmp\RegWorkshop.exe
- %TEMP%\F334.tmp\31EEFixUPD.bat