Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Services' = '<DRIVERS>\services.exe'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'GbPluginK' = '%PROGRAM_FILES%\GbPlugin\gbpsvk.exe'
- '<SYSTEM32>\taskkill.exe' /pid=3348
- '<SYSTEM32>\taskkill.exe' /pid=3588
- '<SYSTEM32>\taskkill.exe' /pid=3144
- '<SYSTEM32>\taskkill.exe' /pid=3180
- '<SYSTEM32>\taskkill.exe' /pid=3364
- '<SYSTEM32>\taskkill.exe' /pid=3664
- '<SYSTEM32>\taskkill.exe' /pid=3976
- '<SYSTEM32>\taskkill.exe' /pid=2556
- '<SYSTEM32>\taskkill.exe' /pid=2944
- '<SYSTEM32>\taskkill.exe' /pid=2780
- '<SYSTEM32>\taskkill.exe' /im gbpsv.exe
- '<SYSTEM32>\taskkill.exe' /C taskkill /im gbpsv.exe
- '<SYSTEM32>\taskkill.exe' /pid=4012
- '<SYSTEM32>\taskkill.exe' /pid=2868
- '<SYSTEM32>\taskkill.exe' /pid=3212
- '<SYSTEM32>\taskkill.exe' /pid=3740
- <SYSTEM32>\cmd.exe
- <DRIVERS>\services.exe
- ClassName: '(null)' WindowName: '(null)'
- ClassName: 'Indicator' WindowName: '(null)'