Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] 'UserInit' = '<SYSTEM32>\userinit.exe,<DRIVERS>\http.exe'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'HTTP.sys' = '<DRIVERS>\http.exe'
- %HOMEPATH%\Start Menu\Programs\Startup\filmit.exe.lnk
- 'C:\filmit.exe'
- <DRIVERS>\http.exe
- C:\filmit.exe
- ClassName: 'Indicator' WindowName: '(null)'
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: 'EDIT' WindowName: '(null)'