Technical Information
- [<HKLM>\System\CurrentControlSet\Services\SeetrolService] 'Start' = '00000002'
- [<HKLM>\System\CurrentControlSet\Services\SeetrolService] 'ImagePath' = '"<Full path to file>"'
- 'SeetrolService' "<Full path to file>"
- 'SeetrolService' <Full path to file>
- ClassName: 'RegmonClass', WindowName: ''
- ClassName: 'FilemonClass', WindowName: ''
- ClassName: 'PROCMON_WINDOW_CLASS', WindowName: ''
- <PATH_SAMPLE>standby.dat
- <PATH_SAMPLE>.installstate
- %ALLUSERSPROFILE%\seetrol\lib\21.4.1.1\kh_net.dll
- %ALLUSERSPROFILE%\seetrol\lib\21.4.1.1\kh_codec.dll
- %ALLUSERSPROFILE%\seetrol\lib\21.4.1.1\kh_vpx.dll
- %WINDIR%\syswow64\config\systemprofile\appdata\local\gdipfontcachev1.dat
- 'microsoft.com':80
- DNS ASK microsoft.com
- DNS ASK st####.rapidssl.com
- ClassName: 'Registry Monitor - Sysinternals: www.sysinternals.com' WindowName: ''
- ClassName: '18467-41' WindowName: ''
- ClassName: 'File Monitor - Sysinternals: www.sysinternals.com' WindowName: ''
- ClassName: 'Process Monitor - Sysinternals: www.sysinternals.com' WindowName: ''
- '%WINDIR%\syswow64\sc.exe' failure "SeetrolService" reset= 0 actions= restart/0' (with hidden window)
- '%WINDIR%\syswow64\sc.exe' failure "SeetrolService" reset= 0 actions= restart/0