Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'jnkqv.exe' = '"%WINDIR%\jnkqv.exe"'
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'jnkqv.exe' = '"%WINDIR%\jnkqv.exe"'
- <SYSTEM32>\alg.exe
- C:\spoolerlogs\spooler.xml
- %WINDIR%\pchealth\ERRORREP\UserDumps\winlogon.exe.20120124-011546-00.hdmp
- %WINDIR%\pchealth\ERRORREP\UserDumps\winlogon.exe.20120124-011546-00.mdmp
- %WINDIR%\jnkqv.exe
- %ALLUSERSPROFILE%\Application Data\117936955E9845.dat
- ClassName: 'Indicator' WindowName: ''