Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\Windows Firewall Extentions] 'ImagePath' = '%ProgramFiles%\ghazl2017\Firewall\Firewall.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Windows Firewall Extentions] 'Start' = '00000002'
- [<HKLM>\SYSTEM\ControlSet001\Services\WinDivert1.1] 'ImagePath' = '%ProgramFiles%\ghazl2017\Firewall\WinDivert32.sys'
- %ProgramFiles%\ghazl2017\Firewall\WinDivert64.sys
- %ProgramFiles%\ghazl2017\Firewall\WinDivert32.sys
- %ProgramFiles%\ghazl2017\Firewall\Uninstall.exe
- %TEMP%\nsz2.tmp\System.dll
- %ProgramFiles%\ghazl2017\Firewall\msvcr110.dll
- %TEMP%\nsz2.tmp\nsProcess.dll
- %TEMP%\nsz2.tmp\nsSCM.dll
- %ProgramFiles%\ghazl2017\Firewall\WinDivert.dll
- %ProgramFiles%\ghazl2017\Firewall\Firewall.exe
- %TEMP%\nsz2.tmp\System.dll
- %TEMP%\nsz2.tmp\nsSCM.dll
- %TEMP%\nsz2.tmp\nsProcess.dll
- '%ProgramFiles%\ghazl2017\Firewall\Firewall.exe'