Техническая информация
- %WINDIR%\Tasks\SA.DAT
- '%WINDIR%\winsystem\winservice.exe'
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- '<SYSTEM32>\sc.exe' stop schedule
- '<SYSTEM32>\mode.com' con cp select=437
- '<SYSTEM32>\sc.exe' query schedule
- %WINDIR%\winsystem\winservice.exe
- %WINDIR%\winsystem\winservice.exe
- <SYSTEM32>\PerfStringBackup.TMP
- <SYSTEM32>\wbem\Performance\WmiApRpl.ini