Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] 'Shell' = 'Explorer.exe %WINDIR%\system\Sock.exe'
- <SYSTEM32>\cmd.exe /c %WINDIR%\system\Deleteme.bat
- %WINDIR%\Explorer.EXE
- %WINDIR%\system\Deleteme.bat
- %WINDIR%\system\Wsock.dll
- %WINDIR%\system\Sock.exe
- %WINDIR%\system\Wsock.dll
- %WINDIR%\system\Sock.exe
- ClassName: '#32770' WindowName: 'CCProxy 5.30(Demo Version Can Only Support 3 Users)'
- ClassName: 'iGameMainWndClass' WindowName: 'WMPlayer2005'