Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\COMSysApw] 'ImagePath' = '%WINDIR%\srvany.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\COMSysApw] 'Start' = '00000002'
- '<SYSTEM32>\net.exe' stop COMSysApw
- %ProgramFiles%\AliProbe\openldap.dll
- %ProgramFiles%\AliProbe\libsasl.dll
- %ProgramFiles%\AliProbe\libiconvD.dll
- %ProgramFiles%\sc.reg
- %ProgramFiles%\AliProbe.bat
- %ProgramFiles%\AliProbe\ssleay32.dll
- %ProgramFiles%\AliProbe\AliProbe.ini
- %ProgramFiles%\AliProbe\AliProbe.exe
- %ProgramFiles%\AliProbe\AliMaintain.exe
- %ProgramFiles%\AliProbe\libiconv.dll
- %ProgramFiles%\AliProbe\libeay32.dll
- %ProgramFiles%\AliProbe\libcurl.dll
- ClassName: 'RegEdit_RegEdit' WindowName: ''
- ClassName: 'EDIT' WindowName: ''
- '<SYSTEM32>\net.exe' start COMSysApw
- '<SYSTEM32>\net1.exe' start COMSysApw
- '%WINDIR%\regedit.exe' /s sc.reg
- '<SYSTEM32>\cmd.exe' /c ""%ProgramFiles%\AliProbe.bat" "
- '<SYSTEM32>\net1.exe' stop COMSysApw