Техническая информация
- <SYSTEM32>\cmd.exe /c <SYSTEM32>\del32.bat
- %WINDIR%\explorer.exe
- ClassName: 'PROCMON_WINDOW_CLASS' WindowName: ''
- ClassName: 'RegMonClass' WindowName: ''
- ClassName: 'FileMonClass' WindowName: ''
- <SYSTEM32>\wsock32.sys
- <SYSTEM32>\del32.bat
- %ALLUSERSPROFILE%\Application Data\TEMP:31BE8CE8
- <SYSTEM32>\GsBEOsUjms.ini
- <SYSTEM32>\GsBEOsUjms.ini
- ClassName: '' WindowName: ''
- ClassName: 'ThunderRT6FormDC' WindowName: 'nkoppl223a'