Техническая информация
- <SYSTEM32>\taskkill.exe
- <SYSTEM32>\shutdown.exe
- <SYSTEM32>\taskmgr.exe
- %WINDIR%\NOTEPAD.EXE
- %WINDIR%\regedit.exe
- <SYSTEM32>\taskkill.exe
- '<SYSTEM32>\taskkill.exe' taskmgr /f
- <SYSTEM32>\dllcache\notepad.exe.new
- <SYSTEM32>\shutdown.exe.new
- <SYSTEM32>\taskkill.exe.new
- <SYSTEM32>\dllcache\regedit.exe.new
- <SYSTEM32>\dllcache\shutdown.exe.new
- <SYSTEM32>\dllcache\taskkill.exe.new
- <SYSTEM32>\dllcache\taskmgr.exe.new
- <SYSTEM32>\taskhost.exe
- %WINDIR%\splwow64.exe
- %TEMP%\1.tmp\2.bat
- <SYSTEM32>\conhost.exe
- <SYSTEM32>\taskmgr.exe.new
- %WINDIR%\regedit.exe.new
- %WINDIR%\notepad.exe.new
- '<SYSTEM32>\cmd.exe'
- '<SYSTEM32>\cmd.exe' /c ""%TEMP%\1.tmp\2.bat" <Полный путь к файлу>"