Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\VOneMgrSvc] 'Start' = '00000002'
- '<SYSTEM32>\VOneMgrSvc.exe' -r VOneMgrSvc
- '<SYSTEM32>\VOneMgrSvc.exe'
- '%TEMP%\nsa3.tmp\ns5.tmp' "<SYSTEM32>\VOneMgrSvc.exe" -r VOneMgrSvc
- '%TEMP%\nsa3.tmp\ns4.tmp' "<SYSTEM32>\VOneMgrSvc.exe" -i
- '<SYSTEM32>\VOneMgrSvc.exe' -i
- '<SYSTEM32>\regsvr32.exe' /s "%WINDIR%\Downloaded Program Files\npvmgr.dll"
- %TEMP%\nsa3.tmp\ns4.tmp
- %TEMP%\nsa3.tmp\nsExec.dll
- <SYSTEM32>\VOneMgrSvc.log
- %PROGRAM_FILES%\VONE\VOneManager\VOneManageruninst.exe
- %TEMP%\nsa3.tmp\ns5.tmp
- <SYSTEM32>\VOneMgrSvc.exe
- %TEMP%\nsa3.tmp\System.dll
- %TEMP%\nsv2.tmp
- %PROGRAM_FILES%\VONE\VOneManager\SVMgrVersion.ini
- %WINDIR%\Downloaded Program Files\npvmgr.inf
- %WINDIR%\Downloaded Program Files\npvmgr.dll
- %TEMP%\nsa3.tmp\nsExec.dll
- %TEMP%\nsa3.tmp\System.dll
- %TEMP%\nsa3.tmp\ns4.tmp
- %TEMP%\nsa3.tmp\ns5.tmp
- ClassName: 'SysListView32' WindowName: '(null)'
- ClassName: '#32770' WindowName: '(null)'
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'