Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\msctl32.dll] 'Startup' = 'Startup'
- [<HKLM>\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\msctl32.dll] 'DllName' = 'msctl32.dll'
- [<HKLM>\SYSTEM\ControlSet001\Services\i386p] 'Start' = '00000001'
- <SYSTEM32>\winlogon.exe
- NtQueryDirectoryFile, драйвер-обработчик: unknown
- NtEnumerateValueKey, драйвер-обработчик: unknown
- NtEnumerateKey, драйвер-обработчик: unknown
- <DRIVERS>\i386p.sys
- <SYSTEM32>\msctl32.dll
- 'ft#.#ozilla.org':80
- 'lo###.##anceflyproject.us':80
- ft#.#ozilla.org/pub/mozilla.org/firefox/releases/1.0.7/win32/en-US/Firefox%20Setup%201.0.7.exe
- lo###.##anceflyproject.us/cgi-bin/login.pl
- DNS ASK ft#.#ozilla.org
- DNS ASK lo###.##anceflyproject.us