Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\SangforSddtDrv_5,7,0,2] 'Start' = '00000002'
- '%PROGRAM_FILES%\Sangfor\SSL\SsdtDriver\Install.exe'
- NtOpenFile, драйвер-обработчик: SdSsdtSys.sys
- NtOpenKey, драйвер-обработчик: SdSsdtSys.sys
- NtWriteFile, драйвер-обработчик: SdSsdtSys.sys
- NtCreateFile, драйвер-обработчик: SdSsdtSys.sys
- NtCreateKey, драйвер-обработчик: SdSsdtSys.sys
- NtMapViewOfSection, драйвер-обработчик: SdSsdtSys.sys
- %PROGRAM_FILES%\Sangfor\SSL\SsdtDriver\Install.exe
- %PROGRAM_FILES%\Sangfor\SSL\SsdtDriver\Remove.exe
- %PROGRAM_FILES%\Sangfor\SSL\SsdtDriver\SsdtDriverUnInstaller.exe
- %PROGRAM_FILES%\Sangfor\SSL\SsdtDriver\SangforSsdtSysWin7.sys
- %TEMP%\nsl2.tmp
- %PROGRAM_FILES%\Sangfor\SSL\SsdtDriver\SangforSsdtSysXp.sys
- %PROGRAM_FILES%\Sangfor\SSL\SsdtDriver\SangforSsdtSysVista.sys
- %PROGRAM_FILES%\Sangfor\SSL\SsdtDriver\SangforSsdtSysVista.sys
- %PROGRAM_FILES%\Sangfor\SSL\SsdtDriver\SangforSsdtSysWin7.sys
- %PROGRAM_FILES%\Sangfor\SSL\SsdtDriver\SangforSsdtSysXp.sys в %PROGRAM_FILES%\Sangfor\SSL\SsdtDriver\SdSsdtSys.sys