Техническая информация
- C:\TMP\RE.exe
- <SYSTEM32>\cmd.exe /c ""C:\TMP\RE.cmd" "
- <SYSTEM32>\taskkill.exe /F /IM explorer.exe
- <SYSTEM32>\cmd.exe /c ""C:\TMP\M3.cmd" "
- %WINDIR%\regedit.exe /s C:\TMP\M3.reg
- %WINDIR%\Explorer.EXE
- C:\TMP\M3.cmd
- C:\TMP\RE.cmd
- C:\TMP\RE.exe
- C:\TMP\M3.reg
- C:\TMP\RE.cmd
- C:\TMP\RE.exe
- C:\TMP\M3.cmd
- C:\TMP\M3.reg
- ClassName: 'RegEdit_RegEdit' WindowName: ''
- ClassName: '' WindowName: ''
- ClassName: 'EDIT' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''