Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Active Setup\Installed Components\{WWER1da0-b465-11d1-9948-00c04f98bbc9}] 'StubPath' = '<SYSTEM32>\wbem\xml\setup.vbs'
- [<HKLM>\SYSTEM\ControlSet001\Services\eventvwr] 'Start' = '00000002'
- <SYSTEM32>\sc.exe CREATE eventvwr binPath= "<SYSTEM32>\wbem\eventvwr.exe" START= auto DISPLAYNAME= "Windows eventvwr" TYPE= own
- <SYSTEM32>\sc.exe description eventvwr "Event Viewer Snapin Launcher"
- <SYSTEM32>\reg.exe add "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{WWER1da0-b465-11d1-9948-00c04f98bbc9}" /v "StubPath" /t REG_SZ /d "<SYSTEM32>\wbem\xml\setup.vbs" /f
- %WINDIR%\explorer.exe <SYSTEM32>\wbem\xml\setup.bat
- <SYSTEM32>\wscript.exe "<SYSTEM32>\wbem\xml\setup.vbs" /q
- <SYSTEM32>\cmd.exe /c ""<SYSTEM32>\wbem\xml\setup.bat" "
- <SYSTEM32>\wbem\xml\setup.vbs
- <SYSTEM32>\wbem\xml\setup.bat
- <SYSTEM32>\wbem\eventvwr.exe
- <SYSTEM32>\wbem\mmc.exe
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: '' WindowName: '???? - ????'
- ClassName: '' WindowName: ''