Техническая информация
- <SYSTEM32>\taskkill.exe /f /im "rundll32.exe"
- <SYSTEM32>\taskkill.exe /f /im /t "System"
- <SYSTEM32>\taskkill.exe /f /im /t "svchost"
- <SYSTEM32>\cmd.exe /c ""%TEMP%\1.tmp\foto.jpg.bat""
- <SYSTEM32>\taskkill.exe /f /im "explorer.exe"
- <SYSTEM32>\taskkill.exe /f /im "taskeng.exe"
- %WINDIR%\Explorer.EXE
- %PROGRAM_FILES%\Internet Explorer\it_IT
- %PROGRAM_FILES%\Internet Explorer\en-US
- %TEMP%\1.tmp\foto.jpg.bat
- ClassName: '' WindowName: ''