Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\helpcomdrv_xp] 'Start' = '00000001'
- 'C:\HelpCom\nHcUser.exe'
- '<SYSTEM32>\runonce.exe' -r
- C:\HelpCom\msvcp71.dll
- C:\HelpCom\msvcr71.dll
- C:\HelpCom\nHcUser.exe
- C:\HelpCom\midimap.dll
- C:\HelpCom\helpcomdrv_xp.sys
- C:\HelpCom\libPWSecurity_E.dll
- C:\HelpCom\mfc71.dll
- %WINDIR%\inf\oem3.PNF
- <DRIVERS>\SET3.tmp
- <SYSTEM32>\SET4.tmp
- %WINDIR%\inf\oem3.inf
- %APPDATA%\Microsoft\Protect\S-1-5-21-2052111302-484763869-725345543-1003\265b566e-2f20-481f-8189-0501daf16298
- %APPDATA%\Microsoft\Protect\S-1-5-21-2052111302-484763869-725345543-1003\Preferred
- %APPDATA%\Microsoft\Crypto\RSA\S-1-5-21-2052111302-484763869-725345543-1003\ec702f375e1b12d218f67ab9ef19ca23_23ef5514-3059-436f-a4a7-4cefaab20eb1
- C:\HelpCom\helpcomdrv_xp.inf
- C:\HelpCom\HelpComBase.INF
- C:\HelpCom\HelpComBase.ocx
- C:\HelpCom\MSVCP60.DLL
- C:\HelpCom\HelpComAuto.exe
- C:\HelpCom\CnePCInfo.exe
- C:\HelpCom\Config.ini
- C:\HelpCom\Dialog_Hook.dll
- C:\HelpCom\Thumbs.db
- C:\HelpCom\helpcomdrv_win7.inf
- C:\HelpCom\helpcomdrv_win7.sys
- C:\HelpCom\helpcomdrv_xp.dll
- C:\HelpCom\helpcomdrv_win7.dll
- C:\HelpCom\helpcomdrv_vista.dll
- C:\HelpCom\helpcomdrv_vista.inf
- C:\HelpCom\helpcomdrv_vista.sys
- C:\HelpCom\Thumbs.db
- <SYSTEM32>\SET4.tmp в <SYSTEM32>\helpcomdrv_xp.dll
- <DRIVERS>\SET3.tmp в <DRIVERS>\helpcomdrv_xp.sys
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'