Техническая информация
- [<HKLM>\SYSTEM\CurrentControlSet\Services\dump_E00560C0] 'ImagePath' = '<DRIVERS>\dump_SWENUM.sys'
- [<HKLM>\SYSTEM\CurrentControlSet\Services\dump_E00560C0] 'Start' = '00000002'
- [<HKLM>\System\CurrentControlSet\Services\MsE00560C0App] 'Start' = '00000002'
- [<HKLM>\System\CurrentControlSet\Services\MsE00560C0App] 'ImagePath' = '<SYSTEM32>\svchost.exe -k netsvcs'
- [<HKLM>\System\CurrentControlSet\Services\MsE00560C0App\Parameters] 'ServiceDll' = '<SYSTEM32>\MsE00560C0App.dll'
- 'dump_E00560C0' <DRIVERS>\dump_SWENUM.sys
- [<HKLM>\SYSTEM\CurrentControlSet\Services\dump_E00560C0] 'Group' = 'FSFilter Bottom'
- <DRIVERS>\dump_swenum.sys
- <SYSTEM32>\mse00560c0app.dll