Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\NPClSrv] 'Start' = '00000002'
- [<HKLM>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] '%PROGRAM_FILES%\NPClSrv.exe' = '%PROGRAM_FILES%\NPClSrv.exe:*:Enabled:...
- '%PROGRAM_FILES%\NPAVAdminClient\NpClSrv.exe'
- '%TEMP%\AgentInstaller\AgentInstaller\NPCLINST.EXE'
- '<SYSTEM32>\net1.exe' SHARE NPAV /DELETE
- %PROGRAM_FILES%\NPAVAdminClient\RptParse.dll
- %PROGRAM_FILES%\NPAVAdminClient\NpClInst.exe
- %PROGRAM_FILES%\NPAVAdminClient\ProcessCmd.dll
- %PROGRAM_FILES%\NPAVAdminClient\NpClSrv.exe
- %PROGRAM_FILES%\NPAVAdminClient\RegMgmt.dll
- C:\Zv\_lstnCmd.log
- C:\Zv\ProcPid.Log
- %PROGRAM_FILES%\NPAVAdminClient\NPServerDB.dat
- %PROGRAM_FILES%\NPAVAdminClient\NPClientDB.dat
- C:\NPAVCLINST.log
- %PROGRAM_FILES%\NPAVAdminClient\GenSender.dll
- %TEMP%\AgentInstaller\AgentInstaller\NPCLINST.EXE
- %TEMP%\AgentInstaller\AgentInstaller\NPCLINST.ZIP
- %TEMP%\AgentInstaller\AgentInstaller\NPCLIENTDB.DAT
- %TEMP%\AgentInstaller.zip
- C:\AgentInstall.log
- %PROGRAM_FILES%\NPAVAdminClient\RegSilen.exe
- %PROGRAM_FILES%\NPAVAdminClient\FileSndr.dll
- %PROGRAM_FILES%\NPAVAdminClient\LstnCmd.dll
- %TEMP%\AgentInstaller\AgentInstaller\NPSERVERDB.DAT
- C:\NpClInst.log
- 'any':0
- ClassName: 'Shell_TrayWnd' WindowName: ''