Техническая информация
- [<HKCU>\Software\Microsoft\Windows NT\CurrentVersion\Windows] 'load' = '<SYSTEM32>\nmsvc32.exe'
- <SYSTEM32>\attrib.exe +h "<SYSTEM32>\nmsvc32.exe"
- <SYSTEM32>\cmd.exe /c ""<SYSTEM32>\date207.bat" "
- <SYSTEM32>\cmd.exe /c ""<SYSTEM32>\w32_griattrib0.bat" "
- <SYSTEM32>\w32_griattrib0.bat
- <SYSTEM32>\date207.bat
- <SYSTEM32>\nmsvc32.exe
- <SYSTEM32>\w32_gridata.dat
- <SYSTEM32>\nmsvc32.exe
- ClassName: 'MS_WINHELP' WindowName: ''