Техническая информация
- <SYSTEM32>\tasks\event viewer snap-in launcher (29762912)
- %APPDATA%\eventviewer\eventvwr.exe
- %APPDATA%\eventviewer\tfnme73946158264.tmp
- %APPDATA%\eventviewer\tfnme73946158264.tmp
- %APPDATA%\eventviewer\tfnme73946158264.tmp
- '%WINDIR%\syswow64\schtasks.exe' /create /F /sc minute /mo 5 /tn "Event Viewer Snap-in Launcher (29762912)" /tr "%APPDATA%\EventViewer\eventvwr.exe"
- '%WINDIR%\syswow64\schtasks.exe' /Query /XML /TN "Event Viewer Snap-in Launcher (29762912)"