Техническая информация
- '<SYSTEM32>\ping.exe' 1.1.1.1 -n 1 -w 1
- '<SYSTEM32>\cmd.exe' /C ping 1.1.1.1 -n 1 -w 1 > Nul & Del "<Полный путь к вирусу>"
- ClassName: '' WindowName: 'Process Monitor - Sysinternals: www.sysinternals.com'
- ClassName: 'PROCMON_WINDOW_CLASS' WindowName: ''
- ClassName: '' WindowName: 'Registry Monitor - Sysinternals: www.sysinternals.com'
- ClassName: 'RegmonClass' WindowName: ''
- ClassName: '' WindowName: 'File Monitor - Sysinternals: www.sysinternals.com'
- ClassName: 'GBDYLLO' WindowName: ''
- ClassName: 'OLLYDBG' WindowName: ''
- ClassName: 'FilemonClass' WindowName: ''
- ClassName: 'pediy06' WindowName: ''
- '74.##5.232.51':443
- 'si###etools.in':80
- 'wp#d':80
- http://si###etools.in/age/Version/BNSSCRIPT.age
- http://11#.#11.111.1/wpad.dat via wp#d
- DNS ASK dr###.google.com
- DNS ASK si###etools.in
- DNS ASK wp#d
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: '18467-41' WindowName: ''