| ZeroBOX

Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide 2020-06-10
Version history 2020-06-10

| ZeroBOX

cmd.exe "C:\Windows\System32\cmd.exe" /c start /wait "zQBcaqxBrBs" C:\Users\test22\AppData\Local\Temp\tmp00000000
2648
- rundll32.exe "C:\Windows\system32\rundll32.exe" C:\Windows\system32\shell32.dll,OpenAs_RunDLL C:\Users\test22\AppData\Local\Temp\tmp00000000
  2752
  - editplus.exe "editplus.exe"
    2900

No process loaded Click on a process in the tree above to load its data.

PID
Parent PID

default registry file network process services synchronisation iexplore office pdf