Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WinNt32] 'DLLName' = 'WinNt32.dll'
- [<HKLM>\SYSTEM\ControlSet002\Services\Bct11] 'Start' = '00000000'
- [<HKLM>\SYSTEM\ControlSet002\Services\Bct11] 'ImagePath' = 'System32\Drivers\Bct11.sys'
- [<HKLM>\SYSTEM\ControlSet001\Services\Bct11] 'Start' = '00000000'
- [<HKLM>\SYSTEM\ControlSet001\Services\Bct11] 'ImagePath' = 'System32\Drivers\Bct11.sys'
- <DRIVERS>\Bct11.sys
- <SYSTEM32>\WinNt32.dll
- '20#.#6.195.15':80
- 20#.#6.195.15/40E800104134523E555841393F373C394449502B6C0000005F66000000007600000460EB000530195A0CCE