Техническая информация
- <SYSTEM32>\taskkill.exe /f /pid 2392
- <SYSTEM32>\attrib.exe + h +s + r svchost.exe
- <SYSTEM32>\svchost.exe
- <SYSTEM32>\cmd.exe /c delmytmp.bat
- %TEMP%\is-DE355.tmp\_isetup\_RegDLL.tmp
- %TEMP%\is-DE355.tmp\_isetup\_shfoldr.dll
- %TEMP%\delmytmp.bat
- %TEMP%\run.exe
- %TEMP%\Setup1.exe
- %TEMP%\is-SLJG8.tmp\Setup1.tmp
- %TEMP%\run.exe
- ClassName: '' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'EDIT' WindowName: ''