Техническая информация
- [<HKCU>\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] 'shell' = 'explorer.exe,<SYSTEM32>\RSTray.exe'
- <SYSTEM32>\360setup.exe
- C:\a91.exe
- C:\20096411m5349885old.exe
- <SYSTEM32>\taskkill.exe /f /im egui.exe
- <SYSTEM32>\cmd.exe /c ""%HOMEPATH%\Templateskill.bat""
- <SYSTEM32>\taskkill.exe /f /im ekrn.exe
- ekrn.exe
- <SYSTEM32>\360setup.exe
- <SYSTEM32>\RSTray.exe
- %HOMEPATH%\Templateskill.bat
- C:\20096411m5349885old.exe
- C:\a91.exe
- <SYSTEM32>\RSTray.exe
- <SYSTEM32>\360setup.exe
- %TEMP%\~DFE83A.tmp
- ClassName: '' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''