Техническая информация
- <SYSTEM32>\sc.exe config VSSERV start= disabled
- <SYSTEM32>\sc.exe config scan start= disabled
- <SYSTEM32>\taskkill.exe /im ekrn.exe /f
- <SYSTEM32>\sc.exe config ekrn start= disabled
- <SYSTEM32>\sc.exe config avp start= disabled
- <SYSTEM32>\taskkill.exe /im avp.exe /f
- <SYSTEM32>\sc.exe config XCOMM start= disabled
- <SYSTEM32>\sc.exe config LIVESRV start= disabled
- AVP.EXE
- ekrn.exe
- <DRIVERS>\asyncmac.sys
- ClassName: '' WindowName: ''