Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\SUMMIT Asset Management] 'ImagePath' = '<Текущая директория>\\winmont.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\SUMMIT Asset Management] 'Start' = '00000002'
- '%WINDIR%\Microsoft.NET\Framework\v2.0.50727\cvtres.exe' /NOLOGO /READONLY /MACHINE:IX86 "/OUT:%TEMP%\RES2.tmp" "%TEMP%\CSC1.tmp"
- '%WINDIR%\Microsoft.NET\Framework\v2.0.50727\csc.exe' /noconfig /fullpaths @"%TEMP%\rvpugsoz.cmdline"
- '<SYSTEM32>\sc.exe' CREATE "SUMMIT Asset Management" binpath= "<Текущая директория>\\winmont.exe" start= auto
- %TEMP%\CSC1.tmp
- %TEMP%\rvpugsoz.out
- %TEMP%\rvpugsoz.dll
- %TEMP%\RES2.tmp
- %ALLUSERSPROFILE%\Application Data\Global Symphony services\SAMAgent\Data\DiscStatus.SAM
- %ALLUSERSPROFILE%\Application Data\Global Symphony services\SAMAgent\Data\Logs\Trace.log
- %TEMP%\rvpugsoz.cmdline
- %TEMP%\rvpugsoz.0.cs
- %TEMP%\rvpugsoz.out
- %TEMP%\rvpugsoz.0.cs
- %TEMP%\rvpugsoz.dll
- %TEMP%\RES2.tmp
- %TEMP%\CSC1.tmp
- %TEMP%\rvpugsoz.cmdline