Technical Information
- [<HKLM>\System\CurrentControlSet\Services\ApcHelper] 'ImagePath' = '%WINDIR%\system\ApcHelper.sys'
- 'ApcHelper' %WINDIR%\system\ApcHelper.sys
- <Current directory>\apchelper.sys
- %WINDIR%\system\apchelper.sys
- %WINDIR%\temp\udd894c.tmp
- <Current directory>\apchelper.sys
- %WINDIR%\temp\udd894c.tmp
- '<SYSTEM32>\cmd.exe' /c del /f /a /q %WINDIR%\system\ApcHelper.sys
- '<SYSTEM32>\cmd.exe' /c sc create ApcHelper binPath= %WINDIR%\system\ApcHelper.sys type= kernel
- '<SYSTEM32>\sc.exe' create ApcHelper binPath= %WINDIR%\system\ApcHelper.sys type= kernel
- '<SYSTEM32>\cmd.exe' /c copy ApcHelper.sys %WINDIR%\system\ApcHelper.sys /Y