Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] 'shell' = 'explorer.exe <DRIVERS>\svchost.exe'
- <DRIVERS>\Cam Looka.exe
- <DRIVERS>\svchost.exe
- <SYSTEM32>\taskkill.exe /im teatimer.exe /f
- <DRIVERS>\Cam Looka.exe
- <SYSTEM32>\gogo.txt
- <SYSTEM32>\mmil.htm
- <DRIVERS>\svchost.exe
- <SYSTEM32>\gogo.txt
- <SYSTEM32>\mmil.htm
- %TEMP%\~DFC4AB.tmp
- 'localhost':1035
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: '' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''