Technical Information
- <SYSTEM32>\tasks\system
- <SYSTEM32>\tasks\wudfhost
- <SYSTEM32>\tasks\wininit
- <SYSTEM32>\tasks\lsass
- C:\far2\pluginsdk\headers.c\system.exe
- C:\far2\pluginsdk\headers.c\27d1bcfc3c54e0e44ea423ffd4ee81fe73670a2a
- C:\far2\documentation\rus\wudfhost.exe
- C:\far2\documentation\rus\480b7989c529f6ff17bde430d81d4770fb5337f5
- %WINDIR%\serviceprofiles\localservice\desktop\wininit.exe
- %WINDIR%\serviceprofiles\localservice\desktop\560854153607923c4c5f107085a7db67be01f252
- C:\perflogs\admin\lsass.exe
- C:\perflogs\admin\6203df4a6bafc7c328ee7f6f8ca0a8a838a8a1b9
- '17#.#50.159.102':80
- 'C:\perflogs\admin\lsass.exe'
- '%WINDIR%\syswow64\schtasks.exe' /create /tn "System" /sc ONLOGON /tr "'C:\Far2\PluginSDK\Headers.c\System.exe'" /rl HIGHEST /f
- '%WINDIR%\syswow64\schtasks.exe' /create /tn "WUDFHost" /sc ONLOGON /tr "'C:\Far2\Documentation\rus\WUDFHost.exe'" /rl HIGHEST /f
- '%WINDIR%\syswow64\schtasks.exe' /create /tn "wininit" /sc ONLOGON /tr "'%WINDIR%\ServiceProfiles\LocalService\Desktop\wininit.exe'" /rl HIGHEST /f
- '%WINDIR%\syswow64\schtasks.exe' /create /tn "lsass" /sc ONLOGON /tr "'C:\PerfLogs\Admin\lsass.exe'" /rl HIGHEST /f