Техническая информация
- '<SYSTEM32>\taskkill.exe' /pid=2944
- '<SYSTEM32>\taskkill.exe' /pid=3948
- '<SYSTEM32>\taskkill.exe' /pid=2668
- '<SYSTEM32>\taskkill.exe' /pid=1344
- '<SYSTEM32>\taskkill.exe' /pid=1372
- '<SYSTEM32>\taskkill.exe' /pid=2980
- '<SYSTEM32>\taskkill.exe' /pid=3236
- '<SYSTEM32>\taskkill.exe' /pid=3644
- '<SYSTEM32>\taskkill.exe' /pid=4008
- '<SYSTEM32>\taskkill.exe' /pid=1420
- '<SYSTEM32>\taskkill.exe' /c taskkill /f /im gbpsv.exe
- '<SYSTEM32>\taskkill.exe' /pid=3156
- '<SYSTEM32>\taskkill.exe' /pid=3856
- '<SYSTEM32>\taskkill.exe' /f /im gbpsv.exe
- '<SYSTEM32>\WBEM\WMIADAP.EXE' /f /im gbpsv.exe
- '%WINDIR%\explorer.exe'
- '<SYSTEM32>\taskkill.exe' /pid=248
- '<SYSTEM32>\taskkill.exe' /pid=3436
- '<SYSTEM32>\taskkill.exe' /c rmdir /S /Q %PROGRAM_FILES%\GbPlugin
- '<SYSTEM32>\taskkill.exe' /c explorer
- <SYSTEM32>\taskkill.exe
- <SYSTEM32>\cmd.exe
- <SYSTEM32>\WBEM\WMIADAP.EXE
- 'in###.cloudapp.net':80
- in###.cloudapp.net/w/access.php
- DNS ASK in###.cloudapp.net
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: '' WindowName: '(null)'
- ClassName: '(null)' WindowName: '(null)'