Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\WinServerViewq] 'Start' = '00000002'
- <SYSTEM32>\sys_temtrayq.exe
- <SYSTEM32>\net1.exe start WinServerViewq
- <SYSTEM32>\sc.exe create WinServerViewq binpath= "<SYSTEM32>\sys_temtrayq.exe" type= share start= auto displayname= "systemtrayq" depend= RPCSS/Tcpip/IPSec
- <SYSTEM32>\hz_sys_temtrayq.dat
- <SYSTEM32>\hz_sys_temtrayq.dll
- <SYSTEM32>\keyHook.dll
- <SYSTEM32>\sys_temtrayq.ini
- <SYSTEM32>\sys_temtrayq.exe
- <SYSTEM32>\sys_temtrayq.exe
- <SYSTEM32>\sys_temtrayq.ini