Bruker-158599 Skrevet 15. april 2009 Del Skrevet 15. april 2009 (endret) Glem det Endret 31. juli 2010 av riskake90 Lenke til kommentar
raWrz Skrevet 15. april 2009 Del Skrevet 15. april 2009 du hvet at den sia ikke er til og stole på ? AppInit_DLLs - This value corresponds to files being loaded through the AppInit_DLLs Registry value. The AppInit_DLLs registry value contains a list of dlls that will be loaded when user32.dll is loaded. As most Windows executables use the user32.dll, that means that any DLL that is listed in the AppInit_DLLs registry key will be loaded also. This makes it very difficult to remove the DLL as it will be loaded within multiple processes, some of which can not be stopped without causing system instability. The user32.dll file is also used by processes that are automatically started by the system when you log on. This means that the files loaded in the AppInit_DLLs value will be loaded very early in the Windows startup routine allowing the DLL to hide itself or protect itself before we have access to the system http://www.bleepingcomputer.com/tutorials/tutorial44.html Lenke til kommentar
Bruker-158599 Skrevet 15. april 2009 Forfatter Del Skrevet 15. april 2009 (endret) Endret 31. juli 2010 av riskake90 Lenke til kommentar
Anbefalte innlegg
Opprett en konto eller logg inn for å kommentere
Du må være et medlem for å kunne skrive en kommentar
Opprett konto
Det er enkelt å melde seg inn for å starte en ny konto!
Start en kontoLogg inn
Har du allerede en konto? Logg inn her.
Logg inn nå