Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\pjhtso] 'Start' = '00000002'
- [<HKLM>\SYSTEM\ControlSet001\Services\jogsph] 'Start' = '00000002'
- <SYSTEM32>\sc.exe create pjhtso type= kernel start= auto binpath= "%PROGRAM_FILES%\Uninstall Information\{5d965bfc-527e-4541-0089-a8ad8a028a49}\pjhtso.bin"
- <SYSTEM32>\sc.exe create jogsph type= kernel binpath= "%PROGRAM_FILES%\Uninstall Information\{5d965bfc-527e-4541-0089-a8ad8a028a49}\jogsph.bin" start= auto
- %WINDIR%\msagent\nu7001.tlb
- %WINDIR%\Help\auk3433
- %PROGRAM_FILES%\Uninstall Information\{5d965bfc-527e-4541-0089-a8ad8a028a49}\pjhtso.bin
- %WINDIR%\system\ce3139.drv
- %WINDIR%\Help\xq9323.hlp
- %TEMP%\1.tmp
- %WINDIR%\system\kxv3753.drv
- %WINDIR%\Temp\{4fa0aa58-80fd-41c4-0082-a9950d56e236}
- %PROGRAM_FILES%\Uninstall Information\{5d965bfc-527e-4541-0089-a8ad8a028a49}\jogsph.bin
- %PROGRAM_FILES%\Uninstall Information\{5d965bfc-527e-4541-0089-a8ad8a028a49}\pjhtso.bin
- %WINDIR%\Temp\{4fa0aa58-80fd-41c4-0082-a9950d56e236}
- %PROGRAM_FILES%\Uninstall Information\{5d965bfc-527e-4541-0089-a8ad8a028a49}\jogsph.bin
- %TEMP%\1.tmp
- DNS ASK www.ba##u.com
- ClassName: 'Shell_TrayWnd' WindowName: ''