Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'sys32kern' = '<Полный путь к вирусу>'
- '<SYSTEM32>\taskkill.exe' /pid=2604
- '<SYSTEM32>\taskkill.exe' /pid=2000
- '<SYSTEM32>\taskkill.exe' /pid=588
- '<SYSTEM32>\taskkill.exe' /pid=2096
- '<SYSTEM32>\taskkill.exe' /pid=3312
- '<SYSTEM32>\taskkill.exe' /pid=3920
- '<SYSTEM32>\taskkill.exe' /pid=3180
- '<SYSTEM32>\taskkill.exe' /pid=3660
- '<SYSTEM32>\taskkill.exe' /pid=2772
- '<SYSTEM32>\taskkill.exe' /pid=2940
- '<SYSTEM32>\taskkill.exe' /f /im taskmgr.exe
- '<SYSTEM32>\taskkill.exe' /C taskkill /f /im taskmgr.exe
- '<SYSTEM32>\taskkill.exe' /pid=4072
- '<SYSTEM32>\taskkill.exe' /pid=4076
- '<SYSTEM32>\taskkill.exe' /pid=3316
- '<SYSTEM32>\taskkill.exe' /pid=3744
- <SYSTEM32>\cmd.exe
- <SYSTEM32>\taskkill.exe
- ClassName: 'Indicator' WindowName: '(null)'
- ClassName: '(null)' WindowName: '(null)'
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: 'Button' WindowName: '(null)'