Техническая информация
- '%TEMP%\7848.exe'
- '%TEMP%\2009.exe'
- '<SYSTEM32>\taskhost.exe' /pid=0xcc4 /log
- '<SYSTEM32>\taskhost.exe' --pid=0xb44 --log --managed
- '<SYSTEM32>\conhost.exe'
- '<SYSTEM32>\systeminfo.exe'
- '%WINDIR%\servicing\TrustedInstaller.exe'
- '<SYSTEM32>\makecab.exe' %WINDIR%\Logs\CBS\CbsPersist_20140807121057.log %WINDIR%\Logs\CBS\CbsPersist_20140807121057.cab
- %WINDIR%\Explorer.EXE
- %WINDIR%\Temp\cab_1140_4
- %WINDIR%\Temp\cab_1140_6
- <SYSTEM32>\config\COMPONENTS{6cced2ec-6e01-11de-8bed-001e0bcd1824}.TxR.2.regtrans-ms
- %WINDIR%\Temp\cab_1140_3
- <Служебный элемент>
- <APATH_DUMPS_DIR>_net\CmdDotNetDumper.log
- %WINDIR%\Temp\cab_1140_5
- %WINDIR%\Logs\CBS\CbsPersist_20140807121057.cab
- %TEMP%\7848.exe
- %TEMP%\bm44AD.tmp
- %TEMP%\nsj2452.tmp
- %TEMP%\2009.exe
- <SYSTEM32>\config\COMPONENTS{6cced2ec-6e01-11de-8bed-001e0bcd1824}.TxR.0.regtrans-ms
- <SYSTEM32>\config\COMPONENTS{6cced2ec-6e01-11de-8bed-001e0bcd1824}.TxR.1.regtrans-ms
- %WINDIR%\Temp\cab_1140_2
- <SYSTEM32>\config\COMPONENTS{6cced2ec-6e01-11de-8bed-001e0bcd1824}.TxR.blf
- %WINDIR%\Temp\cab_1140_6
- %WINDIR%\Temp\cab_1140_5
- %WINDIR%\Logs\CBS\CbsPersist_20140807121057.log
- %TEMP%\7848.exe
- %WINDIR%\Temp\cab_1140_2
- %TEMP%\2009.exe
- %WINDIR%\Temp\cab_1140_4
- %WINDIR%\Temp\cab_1140_3
- ClassName: 'Shell_TrayWnd' WindowName: ''