Техническая информация
- <SYSTEM32>\tskill.exe explorer
- %WINDIR%\explorer.exe
- <SYSTEM32>\cmd.exe /c ""%TEMP%\Kopie von kill.bat" "
- <SYSTEM32>\tskill.exe avgnt
- %WINDIR%\Explorer.EXE
- %TEMP%\Kopie von kill.bat
- %TEMP%\delete.bat
- %TEMP%\files.tmp
- %TEMP%\tempfile.exe
- %TEMP%\tempfile.dat
- %TEMP%\files.tmp
- %TEMP%\delete.bat
- %TEMP%\tempfile.exe
- %TEMP%\tempfile.dat
- ClassName: 'Proxy Desktop' WindowName: ''