Technical Information
- %TEMP%\Twain002.Mtx
- %APPDATA%\dllhst3g.exe
- %APPDATA%\RCX1.tmp
- <DRIVERS>\smss.exe
- <LS_APPDATA>\Microsoft\wininit.exe
- <LS_APPDATA>\Microsoft\RCX2.tmp
- <LS_APPDATA>\Microsoft\Windows\mqtgsvc.exe
- <LS_APPDATA>\dllhost.exe
- <LS_APPDATA>\RCX3.tmp
- %ALLUSERSPROFILE%\clipsrv.exe
- %WINDIR%\spoolsv.exe
- %WINDIR%\RCX4.tmp
- %APPDATA%\dllhst3g.exe
- <LS_APPDATA>\Microsoft\wininit.exe
- <LS_APPDATA>\dllhost.exe
- %WINDIR%\spoolsv.exe
- %APPDATA%\dllhst3g.exe
- <LS_APPDATA>\Microsoft\wininit.exe
- <LS_APPDATA>\dllhost.exe
- %WINDIR%\spoolsv.exe
- '%APPDATA%\dllhst3g.exe' /c 82
- '<DRIVERS>\smss.exe' /c 10
- '<LS_APPDATA>\Microsoft\wininit.exe' /c 33
- '<LS_APPDATA>\Microsoft\Windows\mqtgsvc.exe' /c 2
- '<LS_APPDATA>\dllhost.exe' /c 31
- '%ALLUSERSPROFILE%\clipsrv.exe' /c 24
- '%WINDIR%\spoolsv.exe' /c 88