Техническая информация
- '<SYSTEM32>\net.exe' stop CanaMonServ
- '<SYSTEM32>\taskkill.exe' /F /IM CANAMONSERV.EXE
- '<SYSTEM32>\taskkill.exe' /F /IM CPUUSAGE.EXE
- '<SYSTEM32>\taskkill.exe' /F /IM CANAMON.EXE
- %TEMP%\RarSFX0\CanaMon.exe
- %TEMP%\RarSFX0\wi3.exe
- %TEMP%\RarSFX0\RunUpdate.bat
- %TEMP%\RarSFX0\Interop.WUApiLib.dll
- %TEMP%\RarSFX0\Microsoft.Win32.TaskScheduler.dll
- %TEMP%\RarSFX0\Interop.IWshRuntimeLibrary.dll
- %TEMP%\RarSFX0\Tasks.xml
- %TEMP%\RarSFX0\CanaMonServ.exe
- %TEMP%\RarSFX0\MyService.ini
- %TEMP%\RarSFX0\InstallService.exe
- %TEMP%\RarSFX0\Cassia.dll
- %TEMP%\RarSFX0\ICSweep.exe
- %TEMP%\RarSFX0\wi.exe
- %TEMP%\RarSFX0\wi45.exe
- %TEMP%\RarSFX0\wi20.exe
- ClassName: 'EDIT' WindowName: ''
- ClassName: '' WindowName: ''
- '<SYSTEM32>\cmd.exe' /c ""%TEMP%\RarSFX0\RunUpdate.bat" "
- '<SYSTEM32>\net1.exe' stop CanaMonServ
- '<SYSTEM32>\net.exe' start CanaMonServ