Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Tamiami' = '%WINDIR%\strangler.exe'
- %WINDIR%\tamver.sys
- %WINDIR%\tamweb\Pictures.exe
- %WINDIR%\strangler.exe
- %WINDIR%\tamweb\index.htm
- '0.#.0.123':25
- '74.##5.232.51':80
- DNS ASK www.google.com
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''