Техническая информация
- <SYSTEM32>\tasks\runtimerestarter
- <SYSTEM32>\tasks\windowssysrenewer
- [<HKLM>\System\CurrentControlSet\Services\WindowsInput] 'Start' = '00000002'
- [<HKLM>\System\CurrentControlSet\Services\WindowsInput] 'ImagePath' = '"%WINDIR%\SysWOW64\WindowsInput.exe"'
- touchpad driver.exe
- %WINDIR%\syswow64\windowsinput.exe
- %WINDIR%\syswow64\windowsinput.exe.config
- %WINDIR%\syswow64\windowsinput.installstate
- %APPDATA%\google chrom\touchpad driver.exe
- %APPDATA%\google chrom\touchpad driver.exe.config
- %TEMP%\tmpc20a.tmp.exe
- %WINDIR%\temp\ctuuqopa.exe
- %WINDIR%\temp\d14y1exw.inf
- %APPDATA%\google chrom\touchpad driver.exe
- '%WINDIR%\syswow64\windowsinput.exe' --install
- '%WINDIR%\syswow64\windowsinput.exe'
- '%APPDATA%\google chrom\touchpad driver.exe'
- '%TEMP%\tmpc20a.tmp.exe'
- '%APPDATA%\google chrom\touchpad driver.exe' ' (со скрытым окном)
- '<SYSTEM32>\cmstp.exe' /au %WINDIR%\temp\d14y1exw.inf
- '<SYSTEM32>\taskeng.exe' {EFC10557-962C-486F-BB2C-B5AF3C459A94} S-1-5-21-1960123792-2022915161-3775307078-1001:nmkuimltip\user:Interactive:[1]