Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'DirectX5' = '%WINDIR%\assembly\GAC_32\svchost\1.0.0.0__d34a061f079be347\svchost.exe'
- '<SYSTEM32>\scrss.exe'
- '%PROGRAM_FILES%\SSMon\svchost.exe'
- <SYSTEM32>\EasyHook32.dll
- %WINDIR%\assembly\tmp\5UFKL2NG\SSMonInject.dll
- %WINDIR%\assembly\tmp\4T2Z41Y7\EasyHook.dll
- <SYSTEM32>\EasyHook32Svc.exe
- %TEMP%\~pm1.tmp
- <SYSTEM32>\rehook.dll
- <SYSTEM32>\scrss.exe
- %PROGRAM_FILES%\SSMon\EasyHook32.dll
- %PROGRAM_FILES%\SSMon\svchost.exe
- %PROGRAM_FILES%\SSMon\SSMonInject.dll
- %PROGRAM_FILES%\SSMon\EasyHook32Svc.exe
- %WINDIR%\assembly\tmp\TY670RII\svchost.manifest
- %WINDIR%\assembly\tmp\TY670RII\svchost.exe
- %PROGRAM_FILES%\SSMon\EasyHook.dll
- %WINDIR%\assembly\tmp\TY670RII\svchost.manifest в %WINDIR%\WinSxS\Manifests\x86_svchost_d34a061f079be347_1.0.0.0_x-ww_69861f1e.manifest
- ClassName: 'TButton' WindowName: 'start'
- ClassName: 'Indicator' WindowName: '(null)'
- ClassName: 'EDIT' WindowName: '(null)'
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'