Техническая информация
- '<SYSTEM32>\reg.exe' DELETE HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\services\NIS /F
- '<SYSTEM32>\reg.exe' DELETE HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\services\NIS /VA /F
- '<SYSTEM32>\sc.exe' delete NOBU
- '<SYSTEM32>\sc.exe' delete NIS
- '<SYSTEM32>\reg.exe' DELETE HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\NIS /F
- '<SYSTEM32>\sc.exe' stop NOBU
- '<SYSTEM32>\sc.exe' stop NIS
- '<SYSTEM32>\reg.exe' DELETE HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\NIS /VA /F
- '<SYSTEM32>\taskkill.exe' /f /im ccSvcHst.exe
- %TEMP%\bt6573.bat
- %TEMP%\bt6573.bat
- %TEMP%\bt6573.bat
- ClassName: '(null)' WindowName: '(null)'